Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.
Conclusion & alert: CVE-2014-0453 is rated Moderate Risk (51.6/100): CVSS Medium severity, with high exploitation likelihood (EPSS 5.47%, 92th percentile). Core evidence: EPSS ranks this CVE among the most likely to be exploited in the near term. EPSS rose +3.46% over the last day, indicating growing attacker interest. Mandatory action: High exploitation likelihood—assess exposure and prioritize remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 2.01% | 5.47% | +3.46% |
| 2 | 2026-05-18 | 2.43% | 2.01% | -0.42% |
| 3 | 2026-04-29 | — | 2.43% | — |
Full EPSS history (19 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 4.0 | 2.0 | MEDIUM |
|
4.9 | 4.9 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
gentoo
|
normal | CVE-2014-0453: 2 GLSA(s) (201406-32, 201502-12), 4 atom(s) (app-emulation/emul-linux-x86-java, dev-java/icedtea-bin, dev-java/oracle-jdk-bin, dev-java/oracle-jre-bin); latest impact normal. | https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2014-0453 |
redhat
|
medium | — | https://access.redhat.com/security/cve/CVE-2014-0453 |
ubuntu
|
medium | CVE-2014-0453 medium priority: Ubuntu including 3 source packages (openjdk-6, openjdk-6b18, openjdk-7), 18 status rows across 6 suites (lucid, precise, quantal, saucy, trusty, upstream): released 10, DNE 6, ignored 1, needs-triage 1. | https://ubuntu.com/security/CVE-2014-0453 |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| oracle | jrockit | r27.8.1 | cpe:2.3:a:oracle:jrockit:r27.8.1:*:*:*:*:*:*:* |
| oracle | jrockit | r28.3.1 | cpe:2.3:a:oracle:jrockit:r28.3.1:*:*:*:*:*:*:* |
| canonical | ubuntu_linux | 10.04 | cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:* |
| canonical | ubuntu_linux | 12.04 | cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:* |
| canonical | ubuntu_linux | 12.10 | cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:* |
| canonical | ubuntu_linux | 13.10 | cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:* |
| canonical | ubuntu_linux | 14.04 | cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* |
| juniper | junos_space | < 15.1 | cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:* |
| oracle | jdk | 1.5.0 | cpe:2.3:a:oracle:jdk:1.5.0:update61:*:*:*:*:*:* |
| oracle | jdk | 1.6.0 | cpe:2.3:a:oracle:jdk:1.6.0:update71:*:*:*:*:*:* |
| oracle | jdk | 1.7.0 | cpe:2.3:a:oracle:jdk:1.7.0:update51:*:*:*:*:*:* |
| oracle | jdk | 1.8.0 | cpe:2.3:a:oracle:jdk:1.8.0:-:*:*:*:*:*:* |
| oracle | jre | 1.5.0 | cpe:2.3:a:oracle:jre:1.5.0:update61:*:*:*:*:*:* |
| oracle | jre | 1.6.0 | cpe:2.3:a:oracle:jre:1.6.0:update71:*:*:*:*:*:* |
| oracle | jre | 1.7.0 | cpe:2.3:a:oracle:jre:1.7.0:update51:*:*:*:*:*:* |
| oracle | jre | 1.8.0 | cpe:2.3:a:oracle:jre:1.8.0:-:*:*:*:*:*:* |
| debian | debian_linux | 6.0 | cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:* |
| debian | debian_linux | 7.0 | cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* |
| debian | debian_linux | 8.0 | cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* |
| ibm | forms_viewer | >= 4.0.0, < 4.0.0.3 | cpe:2.3:a:ibm:forms_viewer:*:*:*:*:*:*:*:* |
| ibm | forms_viewer | >= 8.0.0, < 8.0.1.1 | cpe:2.3:a:ibm:forms_viewer:*:*:*:*:*:*:*:* |