CVE-2014-0376: Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote a

CVE-2014-0376 is a vulnerability in Oracle Java SE and OpenJDK that affects the JAXP library (a tool for processing XML documents). The flaw allows remote attackers to compromise data integrity through improper permission checks when creating document builders, but only affects sandboxed Java applications like Web Start apps and applets. The specific details of the vulnerability were not fully disclosed by Oracle.