QwikSec

Security Database

CVE

CWE

Training

CVE-2014-0423

Published: Jan 15, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote authenticated users to affect confidentiality and availability via unknown vectors related to Beans. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue is an XML External Entity (XXE) vulnerability in DocumentHandler.java, related to Beans decoding.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

oracle-cpujan2014-cve20140423(90340)

vdb-entry

x_refsource_XF

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_REDHAT

openSUSE-SU-2014:0174

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_HP

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_UBUNTU

https://bugzilla.redhat.com/show_bug.cgi?id=1053066

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_HP

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_HP

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

SUSE-SU-2014:0451

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_HP

vdb-entry

x_refsource_SECTRACK

vendor-advisory

x_refsource_UBUNTU

third-party-advisory

x_refsource_SECUNIA

SUSE-SU-2014:0266

vendor-advisory

x_refsource_SUSE

http://www-01.ibm.com/support/docview.wss?uid=swg21677388

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

http://www-01.ibm.com/support/docview.wss?uid=swg21679287

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

SUSE-SU-2014:0246

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/995b32f013f5

x_refsource_CONFIRM

openSUSE-SU-2014:0180

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2014:0177

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2014-0423 - Security Vulnerability | QwikSec