漏洞信息详情
Oracle Java SE 安全漏洞
- CNNVD编号:CNNVD-202010-975 <!--
- 危害等级: 低危-->
- 危害等级: 低危
- CVE编号: CVE-2020-14782
- 漏洞类型: 其他
- 发布时间: 2020-10-20
- 威胁类型: 远程
- 更新时间: 2021-11-25
- 厂 商:
- 漏洞来源: Red Hat
-
漏洞简介
Oracle Java SE是美国甲骨文(Oracle)公司的一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。
Oracle Java SE 存在安全漏洞,该漏洞使未经身份验证的攻击者可以通过多种协议访问网络,从而损害Java SE,嵌入式Java SE。
漏洞公告
目前厂商已发布升级补丁以修复漏洞,补丁获取链接:
https://www.oracle.com/security-alerts/cpuoct2020.html
参考网址
来源:DEBIAN
链接:https://www.debian.org/security/2020/dsa-4779
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00041.html
来源:MLIST
链接:https://lists.debian.org/debian-lts-announce/2020/10/msg00031.html
来源:GENTOO
链接:https://security.gentoo.org/glsa/202101-19
来源:CONFIRM
链接:https://security.netapp.com/advisory/ntap-20201023-0004/
来源:MISC
链接:https://www.oracle.com/security-alerts/cpuoct2020.html
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.0914
来源:www.nsfocus.net
链接:http://www.nsfocus.net/vulndb/50407
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4058/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-mq-appliance-is-affected-by-a-java-se-vulnerability-cve-2020-14782/
来源:vigilance.fr
链接:https://vigilance.fr/vulnerability/Oracle-Java-OpenJDK-vulnerabilities-of-October-2020-33649
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.3648/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-java-affects-ibm-cloud-pak-for-multicloud-management-monitoring/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-ibm-sdk-java-technology-edition-version-7-version-8-that-is-used-by-ibm-workload-scheduler-3/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/159678/Red-Hat-Security-Advisory-2020-4307-01.html
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4454/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4389/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.0797
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-security-vulnerabilities-affect-ibm-websphere-application-server-in-ibm-cloud-4/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-cve-2020-14782-may-affect-ibm-sdk-java-technology-edition-for-content-collector-for-email-content-collector-for-file-systems-content-collector-for-microsoft-sharepoi/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4098/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-ibm-tivoli-system-automation-application-manager-oct-2020-cpu-cve-2020-14782/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-the-ibm-java-runtime-affect-ibm-rational-clearquest-2/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-runtime-affects-ibm-sterling-connectdirect-file-agent-4/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.0562
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affects-websphere-application-server-october-2020-cpu-that-is-bundled-with-ibm-websphere-application-server-patterns/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.3664/
来源:www.ibm.com
链接:https://www.ibm.com/support/pages/node/6486707
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-ibm-java-runtime-affect-ibm-spectrum-protect-backup-archive-client-ibm-spectrum-protect-for-space-management-and-ibm-spectrum-protect-for-virtual-environments/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-october-2020-patch-update-for-java-2/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-privileged-identity-manager-is-affected-by-vulnerability-in-cve-2020-14782-deferred-from-oracle-oct-2020-cpu-for-java-8/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.1216
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4201/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/160570/Red-Hat-Security-Advisory-2020-5586-01.html
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-java-affecting-watson-knowledge-catalog-for-ibm-cloud-pak-for-data/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/161088/Gentoo-Linux-Security-Advisory-202101-19.html
来源:www.oracle.com
链接:https://www.oracle.com/security-alerts/cpuoct2020.html
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.3772.2/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-ibm-security-directory-server-4/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.1146
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-ibm-java-runtime-affect-ibm-spectrum-protect-snapshot-for-vmware-cve-2020-27221-cve-2020-14782/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/159719/Red-Hat-Security-Advisory-2020-4348-01.html
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.0773
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.1982
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/159744/Ubuntu-Security-Notice-USN-4607-1.html
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-cves-vulnerabilities-in-ibm-java-runtime-affect-ibm-integration-designer-used-in-ibm-business-automation-workflow-and-ibm-business-process-manager-2/
来源:access.redhat.com
链接:https://access.redhat.com/security/cve/cve-2020-14782
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-ibm-java-runtime-affect-ibm-spectrum-protect-server-operations-center-and-client-management-service-cve-2020-14782-cve-2020-27221/
来源:www.ibm.com
链接:https://www.ibm.com/support/pages/node/6490353
来源:www.ibm.com
链接:https://www.ibm.com/support/pages/node/6518920
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-security-vulnerability-has-been-identified-in-ibm-sdk-java-technology-edition-shipped-with-ibm-tivoli-netcool-impact-cve-2020-14782/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-java-affects-ibm-cloud-application-business-insights-3/
来源:www.ibm.com
链接:https://www.ibm.com/support/pages/node/6441779
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-march-2021-vulnerability-in-ibm-java-runtime-affect-cics-transaction-gateway/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-se-affects-ibm-elastic-storage-system/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-security-vulnerability-in-java-se-affects-rational-build-forge-cve-2020-14782/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/160053/Ubuntu-Security-Notice-USN-4607-2.html
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.3929/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-kenexa-lms-on-premise-cve-2020-14782-deferred-from-oracle-oct-2020-cpu-for-java-8/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-affects-ibm-developer-for-z-systems-2/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.1785.2
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-may-affect-jre-in-ibm-datapower-gateway/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-has-announced-a-release-for-ibm-security-identity-governance-and-intelligence-in-response-to-a-security-vulnerability-cve-2020-14782-2/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/161669/Red-Hat-Security-Advisory-2021-0736-01.html
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-runtime-affects-ibm-messagegateway/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-and-ibm-java-runtime-affect-tpf-toolkit-5/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.3694.2/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-runtime-affects-ibm-sterling-connectdirect-for-microsoft-windows-2/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.3771/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-cve-2020-14782-may-affect-ibm-sdk-java-technology-edition-for-content-collector-for-sap-applications/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.0072/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-and-ibm-java-runtime-affect-rational-performance-tester-5/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-runtime-affect-ibm-tivoli-monitoring-for-virtual-environments-base-june-2021/
来源:www.ibm.com
链接:https://www.ibm.com/support/pages/node/6440317
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-affect-ibm-cloud-pak-for-automation-3/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-has-announced-a-release-for-ibm-security-identity-governance-and-intelligence-in-response-to-a-security-vulnerability-cve-2020-14782/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-java-sdk-technology-edition-affects-ibm-security-identity-manager-virtual-appliance-cve-2020-14782-cve-2020-14781/
来源:www.ibm.com
链接:https://www.ibm.com/support/pages/node/6487161
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-runtime-affect-z-tpf-7/
来源:www.ibm.com
链接:https://www.ibm.com/support/pages/node/6482519
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-an-unspecified-vulnerability-in-java-se-related-to-the-libraries-component-could-allow-an-unauthenticated-attacker/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-an-unspecified-vulnerability-in-java-se-related-to-the-libraries-component-could-affect-infosphere-streams-version-4-3/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-websphere-service-registry-and-repository-and-websphere-service-registry-and-repository-studio-january-2021-cpu/
来源:nvd.nist.gov
链接:https://nvd.nist.gov/vuln/detail/CVE-2020-14782
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-ibm-java-runtime-affect-ibm-spectrum-protect-backup-archive-client-ibm-spectrum-protect-for-space-management-and-ibm-spectrum-protect-for-virtual-environments-3/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cloud-private-is-vulnerable-to-a-java-vulnerability-cve-2020-14782/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-ibm-java-se-affects-ibm-spectrum-scale/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerabilities-in-ibm-java-affects-ibm-developer-for-z-systems/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/161661/Red-Hat-Security-Advisory-2021-0717-01.html
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-api-connect-is-impacted-by-a-vulnerability-in-java-se-cve-2020-14782/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-sdk-java-technology-edition-affect-ibm-operational-decision-manager-oct-2020-and-jan-2021-cpus/
受影响实体
暂无
补丁
- OpenJDK 安全漏洞的修复措施<!--2020-10-20-->
还没有评论,来说两句吧...