JVN/CVE Demo: Cveinfos

CVE

Id: 67820
CVE No.: CVE-2014-0411
Status: Candidate
Description: Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information about encryption keys via a timing discrepancy during the TLS/SSL handshake.
Phase: Assigned (20131212)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
654754	67820	CVE-2014-0411	CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html	View
654755	67820	CVE-2014-0411	CONFIRM:http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/d533e96c7acc	View
654756	67820	CVE-2014-0411	CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1053010	View
654757	67820	CVE-2014-0411	CONFIRM:http://www.ibm.com/support/docview.wss?uid=swg21672078	View
654758	67820	CVE-2014-0411	CONFIRM:https://www.ibm.com/support/docview.wss?uid=swg21675223	View
654759	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004656	View
654760	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21669519	View
654761	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21675938	View
654762	67820	CVE-2014-0411	CONFIRM:http://www.ibm.com/support/docview.wss?uid=ssg1S1004745	View
654763	67820	CVE-2014-0411	CONFIRM:https://www.ibm.com/support/docview.wss?uid=swg21677913	View
654764	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21680234	View
654765	67820	CVE-2014-0411	CONFIRM:http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096132	View
654766	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21680387	View
654767	67820	CVE-2014-0411	CONFIRM:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777	View
654768	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21682668	View
654769	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21682669	View
654770	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21682670	View
654771	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21682671	View
654772	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21682904	View
654773	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21676373	View
654774	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21676190	View
654775	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21676978	View
654776	67820	CVE-2014-0411	CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21677388	View
654777	67820	CVE-2014-0411	HP:HPSBUX02972	View
654778	67820	CVE-2014-0411	URL:http://marc.info/?l=bugtraq&m=139402697611681&w=2	View
654779	67820	CVE-2014-0411	HP:HPSBUX02973	View
654780	67820	CVE-2014-0411	URL:http://marc.info/?l=bugtraq&m=139402749111889&w=2	View
654781	67820	CVE-2014-0411	HP:SSRT101454	View
654782	67820	CVE-2014-0411	URL:http://marc.info/?l=bugtraq&m=139402697611681&w=2	View
654783	67820	CVE-2014-0411	HP:SSRT101455	View
654784	67820	CVE-2014-0411	URL:http://marc.info/?l=bugtraq&m=139402749111889&w=2	View
654785	67820	CVE-2014-0411	REDHAT:RHSA-2014:0026	View
654786	67820	CVE-2014-0411	URL:http://rhn.redhat.com/errata/RHSA-2014-0026.html	View
654787	67820	CVE-2014-0411	REDHAT:RHSA-2014:0027	View
654788	67820	CVE-2014-0411	URL:http://rhn.redhat.com/errata/RHSA-2014-0027.html	View
654789	67820	CVE-2014-0411	REDHAT:RHSA-2014:0097	View
654790	67820	CVE-2014-0411	URL:http://rhn.redhat.com/errata/RHSA-2014-0097.html	View
654791	67820	CVE-2014-0411	REDHAT:RHSA-2014:0136	View
654792	67820	CVE-2014-0411	URL:http://rhn.redhat.com/errata/RHSA-2014-0136.html	View
654793	67820	CVE-2014-0411	REDHAT:RHSA-2014:0030	View
654794	67820	CVE-2014-0411	URL:http://rhn.redhat.com/errata/RHSA-2014-0030.html	View
654795	67820	CVE-2014-0411	REDHAT:RHSA-2014:0134	View
654796	67820	CVE-2014-0411	URL:http://rhn.redhat.com/errata/RHSA-2014-0134.html	View
654797	67820	CVE-2014-0411	REDHAT:RHSA-2014:0135	View
654798	67820	CVE-2014-0411	URL:http://rhn.redhat.com/errata/RHSA-2014-0135.html	View
654799	67820	CVE-2014-0411	SUSE:openSUSE-SU-2014:0174	View
654800	67820	CVE-2014-0411	URL:http://lists.opensuse.org/opensuse-updates/2014-01/msg00105.html	View
654801	67820	CVE-2014-0411	SUSE:SUSE-SU-2014:0246	View
654802	67820	CVE-2014-0411	URL:http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html	View
654803	67820	CVE-2014-0411	SUSE:SUSE-SU-2014:0266	View
654804	67820	CVE-2014-0411	URL:http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00012.html	View
654805	67820	CVE-2014-0411	SUSE:openSUSE-SU-2014:0177	View
654806	67820	CVE-2014-0411	URL:http://lists.opensuse.org/opensuse-updates/2014-01/msg00107.html	View
654807	67820	CVE-2014-0411	SUSE:openSUSE-SU-2014:0180	View
654808	67820	CVE-2014-0411	URL:http://lists.opensuse.org/opensuse-updates/2014-02/msg00000.html	View
654809	67820	CVE-2014-0411	SUSE:SUSE-SU-2014:0451	View
654810	67820	CVE-2014-0411	URL:http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00024.html	View
654811	67820	CVE-2014-0411	UBUNTU:USN-2089-1	View
654812	67820	CVE-2014-0411	URL:http://www.ubuntu.com/usn/USN-2089-1	View
654813	67820	CVE-2014-0411	UBUNTU:USN-2124-1	View
654814	67820	CVE-2014-0411	URL:http://www.ubuntu.com/usn/USN-2124-1	View
654815	67820	CVE-2014-0411	BID:64758	View
654816	67820	CVE-2014-0411	URL:http://www.securityfocus.com/bid/64758	View
654817	67820	CVE-2014-0411	BID:64918	View
654818	67820	CVE-2014-0411	URL:http://www.securityfocus.com/bid/64918	View
654819	67820	CVE-2014-0411	OSVDB:102028	View
654820	67820	CVE-2014-0411	URL:http://osvdb.org/102028	View
654821	67820	CVE-2014-0411	SECTRACK:1029608	View
654822	67820	CVE-2014-0411	URL:http://www.securitytracker.com/id/1029608	View
654823	67820	CVE-2014-0411	SECUNIA:56432	View
654824	67820	CVE-2014-0411	URL:http://secunia.com/advisories/56432	View
654825	67820	CVE-2014-0411	SECUNIA:56485	View
654826	67820	CVE-2014-0411	URL:http://secunia.com/advisories/56485	View
654827	67820	CVE-2014-0411	SECUNIA:56486	View
654828	67820	CVE-2014-0411	URL:http://secunia.com/advisories/56486	View
654829	67820	CVE-2014-0411	SECUNIA:56487	View
654830	67820	CVE-2014-0411	URL:http://secunia.com/advisories/56487	View
654831	67820	CVE-2014-0411	SECUNIA:56535	View
654832	67820	CVE-2014-0411	URL:http://secunia.com/advisories/56535	View
654833	67820	CVE-2014-0411	SECUNIA:59071	View
654834	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59071	View
654835	67820	CVE-2014-0411	SECUNIA:59082	View
654836	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59082	View
654837	67820	CVE-2014-0411	SECUNIA:59254	View
654838	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59254	View
654839	67820	CVE-2014-0411	SECUNIA:59251	View
654840	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59251	View
654841	67820	CVE-2014-0411	SECUNIA:59704	View
654842	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59704	View
654843	67820	CVE-2014-0411	SECUNIA:57809	View
654844	67820	CVE-2014-0411	URL:http://secunia.com/advisories/57809	View
654845	67820	CVE-2014-0411	SECUNIA:59037	View
654846	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59037	View
654847	67820	CVE-2014-0411	SECUNIA:59665	View
654848	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59665	View
654849	67820	CVE-2014-0411	SECUNIA:59872	View
654850	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59872	View
654851	67820	CVE-2014-0411	SECUNIA:60005	View
654852	67820	CVE-2014-0411	URL:http://secunia.com/advisories/60005	View
654853	67820	CVE-2014-0411	SECUNIA:60498	View
654854	67820	CVE-2014-0411	URL:http://secunia.com/advisories/60498	View
654855	67820	CVE-2014-0411	SECUNIA:60833	View
654856	67820	CVE-2014-0411	URL:http://secunia.com/advisories/60833	View
654857	67820	CVE-2014-0411	SECUNIA:60835	View
654858	67820	CVE-2014-0411	URL:http://secunia.com/advisories/60835	View
654859	67820	CVE-2014-0411	SECUNIA:60836	View
654860	67820	CVE-2014-0411	URL:http://secunia.com/advisories/60836	View
654861	67820	CVE-2014-0411	SECUNIA:59194	View
654862	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59194	View
654863	67820	CVE-2014-0411	SECUNIA:59235	View
654864	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59235	View
654865	67820	CVE-2014-0411	SECUNIA:59283	View
654866	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59283	View
654867	67820	CVE-2014-0411	SECUNIA:59324	View
654868	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59324	View
654869	67820	CVE-2014-0411	SECUNIA:59339	View
654870	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59339	View
654871	67820	CVE-2014-0411	SECUNIA:59705	View
654872	67820	CVE-2014-0411	URL:http://secunia.com/advisories/59705	View
654873	67820	CVE-2014-0411	XF:oracle-cpujan2014-cve20140411(90357)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
12217	JVNDB-2014-001092	Oracle Virtualization の Oracle Secure Global Desktop における Administration Console および Workspace Web Application に関する脆弱性	Oracle Virtualization の Oracle Secure Global Desktop (SGD) には、Administration Console および Workspace Web Application に関する処理に不備があるため、機密性、完全性、および可用性に影響のある脆弱性が存在します。	CVE-2014-0419	67820	5.1		http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001092.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.45 MB
View render complete	3.05 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.50
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	393.40
Event: Controller.beforeRender	5.20
» Processing toolbar data	5.12
Rendering View	32.69
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	31.76
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.50
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.09
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/67820
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/67820
Remote Port	53026
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.181
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.3.223.86
Http Via	1.1 squid-proxy-5b5d847c96-kd6qm (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectdos	1
X Dostranslated Ip	216.73.216.181
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.181
Unique Id	aLyCV4dJqF0fiU5RrwVuLgAAAYQ
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.181
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.181
Redirect Unique Id	aLyCV4dJqF0fiU5RrwVuLgAAAYQ
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.181
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.181
Redirect Redirect Unique Id	aLyCV4dJqF0fiU5RrwVuLgAAAYQ
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1757184599.3712
Request Time	1757184599

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files