Vulnerabilities > CVE-2020-14621

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle JDK 11.0.7 Oracle JDK 14.0.1 Oracle JDK 1.8.0 Oracle JDK 1.7.0 Oracle JRE 1.8.0	5
Application	Mcafee Mcafee Epolicy Orchestrator 5.9.0 Mcafee Epolicy Orchestrator 5.9.1 Mcafee Epolicy Orchestrator 5.10.0	11
Application	Netapp Netapp Cloud Backup - Netapp Steelstore Cloud Integrated Storage - Netapp Snapmanager - Netapp Oncommand Workflow Automation - Netapp Oncommand Insight - Netapp E Series Santricity Storage Manager - Netapp Active IQ Unified Manager - Netapp Santricity Unified Manager - Netapp E Series Performance Analyzer - Netapp Oncommand Unified Manager Core Package - Netapp Plug IN FOR Symantec Netbackup - Netapp E Series Santricity WEB Services - Netapp 7 Mode Transition Tool - Netapp Cloud Secure Agent - Netapp E Series Santricity OS Controller 11.0.0 Netapp E Series Santricity OS Controller 11.20 Netapp E Series Santricity OS Controller 11.25 Netapp E Series Santricity OS Controller 11.30 Netapp E Series Santricity OS Controller 11.30.5R3 Netapp E Series Santricity OS Controller 11.40 Netapp E Series Santricity OS Controller 11.40.3R2 Netapp E Series Santricity OS Controller 11.40.5 Netapp E Series Santricity OS Controller 11.50.1 Netapp E Series Santricity OS Controller 11.50.2 Netapp E Series Santricity OS Controller 11.60 Netapp E Series Santricity OS Controller 11.60.0 Netapp E Series Santricity OS Controller 11.60.1 Netapp E Series Santricity OS Controller 11.60.3 Netapp E Series Santricity OS Controller 11.70.1 Netapp E Series Santricity OS Controller 11.70.2	33
OS	Fedoraproject Fedoraproject Fedora 31 Fedoraproject Fedora 32	2
OS	Opensuse Opensuse Leap 15.1 Opensuse Leap 15.2	2
OS	Canonical Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 20.04 Canonical Ubuntu Linux 16.04	3
OS	Debian Debian Debian Linux 9.0 Debian Debian Linux 10.0	2

Vulnerabilities > CVE-2020-14621 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2020-14621"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2020-14621