CVE Vulnerabilities

CVE-2014-3068

Published: Dec 02, 2014 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

IBM Java Runtime Environment (JRE) 7 R1 before SR1 FP1 (7.1.1.1), 7 before SR7 FP1 (7.0.7.1), 6 R1 before SR8 FP1 (6.1.8.1), 6 before SR16 FP1 (6.0.16.1), and before 5.0 SR16 FP7 (5.0.16.7) allows attackers to obtain the private key from a Certificate Management System (CMS) keystore via a brute force attack.

Affected Software

Name Vendor Start Version End Version
Java Ibm 7.0.0.0 7.0.0.0
Java Ibm 6.0.3.0 6.0.3.0
Java Ibm 6.0.9.0 6.0.9.0
Java Ibm 6.0.13.0 6.0.13.0
Java Ibm 7.0.2.0 7.0.2.0
Java Ibm 6.0.10.1 6.0.10.1
Java Ibm 7.0.4.2 7.0.4.2
Java Ibm 5.0.12.2 5.0.12.2
Java Ibm 6.0.10.0 6.0.10.0
Java Ibm 7.0.1.0 7.0.1.0
Java Ibm 5.0.12.3 5.0.12.3
Java Ibm 5.0.16.3 5.0.16.3
Java Ibm 5.0.0.0 5.0.0.0
Java Ibm 6.0.13.2 6.0.13.2
Java Ibm 5.0.14.0 5.0.14.0
Java Ibm 5.0.11.0 5.0.11.0
Java Ibm 7.0.4.1 7.0.4.1
Java Ibm 6.0.6.0 6.0.6.0
Java Ibm 5.0.16.0 5.0.16.0
Java Ibm 5.0.12.1 5.0.12.1
Java Ibm 6.0.1.0 6.0.1.0
Java Ibm 6.0.9.1 6.0.9.1
Java Ibm 6.0.12.0 6.0.12.0
Java Ibm 6.0.8.1 6.0.8.1
Java Ibm 5.0.13.0 5.0.13.0
Java Ibm 5.0.16.2 5.0.16.2
Java Ibm 5.0.12.4 5.0.12.4
Java Ibm 6.0.11.0 6.0.11.0
Java Ibm 6.0.5.0 6.0.5.0
Java Ibm 6.0.7.0 6.0.7.0
Java Ibm 6.0.2.0 6.0.2.0
Java Ibm 6.0.13.1 6.0.13.1
Java Ibm 7.0.5.0 7.0.5.0
Java Ibm 5.0.11.2 5.0.11.2
Java Ibm 5.0.11.1 5.0.11.1
Java Ibm 6.0.14.0 6.0.14.0
Java Ibm 5.0.16.1 5.0.16.1
Java Ibm 5.0.12.0 5.0.12.0
Java Ibm 5.0.12.5 5.0.12.5
Java Ibm 6.0.4.0 6.0.4.0
Java Ibm 6.0.9.2 6.0.9.2
Java Ibm 6.0.8.0 6.0.8.0
Java Ibm 6.0.0.0 6.0.0.0
Java Ibm 7.0.3.0 7.0.3.0
Java Ibm 7.0.4.0 7.0.4.0
Java Ibm 5.0.15.0 5.0.15.0

References