What is the severity of CVE-2014-8891?

CVE-2014-8891 has been rated with a CVSSv2 score of 6.8, indicating a medium severity level.

How do I fix CVE-2014-8891?

To fix CVE-2014-8891, update the IBM SDK, Java Technology Edition to the latest version specified in the affected software list.

Which versions of IBM SDK, Java Technology Edition are affected by CVE-2014-8891?

CVE-2014-8891 affects various versions of IBM SDK ranging from 5.0 SR16-FP9 up to 7.1 SR2-FP10.

Are there any workarounds for CVE-2014-8891?

There are no specific workarounds mentioned for CVE-2014-8891; updating to a fixed version is recommended.

What type of vulnerability is CVE-2014-8891?

CVE-2014-8891 is an unspecified vulnerability in IBM Java SDK that could potentially lead to security risks.

Vulnerability/
CVE-2014-8891

critical

4/2/2015

6/3/2015

6/8/2024

CVE-2014-8891

First published: Wed Feb 04 2015(Updated: )

IBM JDK updates 7R1 SR2-FP10, 7 SR8-FP10, 6R1 SR8-FP3, 6 SR16-FP3 and 5.0 SR16-FP9 correct an unspecified vulnerability identified using <a href="https://access.redhat.com/security/cve/CVE-2014-8891">CVE-2014-8891</a>. Upstream has rated this issue with CVSSv2 score of 6.8 (no vector provided). <a href="http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_February_2015">http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_February_2015</a> Further details of the issue should be made available via the following link: <a href="http://www.ibm.com/support/docview.wss?uid=swg21695747">http://www.ibm.com/support/docview.wss?uid=swg21695747</a>

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM SDK, Java Technology Edition	>=5.0.0.0<=5.0.16.8
IBM SDK, Java Technology Edition	>=6.0.0.0<6.0.16.3
IBM SDK, Java Technology Edition	>=6.1.0.0<=6.1.8.2
IBM SDK, Java Technology Edition	>=7.0.0.0<7.0.8.10
IBM SDK, Java Technology Edition	>=7.1.0.0<7.1.2.10

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-8891?
CVE-2014-8891 has been rated with a CVSSv2 score of 6.8, indicating a medium severity level.
How do I fix CVE-2014-8891?
To fix CVE-2014-8891, update the IBM SDK, Java Technology Edition to the latest version specified in the affected software list.
Which versions of IBM SDK, Java Technology Edition are affected by CVE-2014-8891?
CVE-2014-8891 affects various versions of IBM SDK ranging from 5.0 SR16-FP9 up to 7.1 SR2-FP10.
Are there any workarounds for CVE-2014-8891?
There are no specific workarounds mentioned for CVE-2014-8891; updating to a fixed version is recommended.
What type of vulnerability is CVE-2014-8891?
CVE-2014-8891 is an unspecified vulnerability in IBM Java SDK that could potentially lead to security risks.

agent/type
agent/first-publish-date
agent/references
collector/mitre-cve
source/MITRE
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2014-8891
agent/severity
agent/last-modified-date
agent/author
agent/event
agent/description
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm sdk, java technology edition
version/ibm sdk, java technology edition/5.0.0.0
version/ibm sdk, java technology edition/5.0.16.8
version/ibm sdk, java technology edition/6.0.0.0
version/ibm sdk, java technology edition/6.1.0.0
version/ibm sdk, java technology edition/6.1.8.2
version/ibm sdk, java technology edition/7.0.0.0
version/ibm sdk, java technology edition/7.1.0.0