AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2020-14621: Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are

mediumvulnerability

security

Source: NVD/CVE DatabaseJuly 15, 2020CVE-2020-14621

Summary

A vulnerability in Oracle Java SE's JAXP component (a tool for processing XML data) allows attackers to modify or delete data without authentication by sending malicious data through network protocols. The flaw affects multiple Java versions including 7u261, 8u251, 11.0.7, and 14.0.1, and has a CVSS score (a 0-10 rating of how severe a vulnerability is) of 5.3.

Vulnerability Details

CVSS Score

5.3(medium)

EPSS (30-day exploit probability)

EPSS: 0.5%

Classification

Attack SophisticationModerate

Impact (CIA+S)

integrity

Original source: https://nvd.nist.gov/vuln/detail/CVE-2020-14621

First tracked: February 15, 2026 at 08:43 PM

Classified by LLM (prompt v3) · confidence: 35%