Lucene search

[email protected]CVE-2015-0408

HistoryJan 21, 2015 - 6:59 p.m.

CVE-2015-0408

2015-01-2118:59:48

[email protected]

web.nvd.nist.gov

130

cve-2015-0408

oracle java se

vulnerability

confidentiality

integrity

availability

rmi

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

3.8 Low

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.6%

JSON

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI.

Affected configurations

NVD

Node

oraclejdkMatch1.5.0update75

oraclejdkMatch1.6.0update85

oraclejdkMatch1.7.0update72

oraclejdkMatch1.8.0update25

oraclejreMatch1.5.0update75

oraclejreMatch1.6.0update85

oraclejreMatch1.7.0update72

oraclejreMatch1.8.0update25

Node

canonicalubuntu_linuxMatch10.04lts

canonicalubuntu_linuxMatch12.04lts

canonicalubuntu_linuxMatch14.04lts

canonicalubuntu_linuxMatch14.10

debiandebian_linuxMatch7.0

debiandebian_linuxMatch8.0

novellsuse_linux_enterprise_desktopMatch11.0sp3

novellsuse_linux_enterprise_serverMatch12.0

opensuseopensuseMatch13.2

redhatenterprise_linuxMatch5.0

redhatenterprise_linuxMatch6.0

redhatenterprise_linuxMatch7.0

CPENameOperatorVersion
oracle:jdkoracle jdkeq1.5.0
oracle:jdkoracle jdkeq1.6.0
oracle:jdkoracle jdkeq1.7.0
oracle:jdkoracle jdkeq1.8.0
oracle:jreoracle jreeq1.5.0
oracle:jreoracle jreeq1.6.0
oracle:jreoracle jreeq1.7.0
oracle:jreoracle jreeq1.8.0

CPE	Name	Operator	Version
oracle:jdk	oracle jdk	eq	1.5.0
oracle:jdk	oracle jdk	eq	1.6.0
oracle:jdk	oracle jdk	eq	1.7.0
oracle:jdk	oracle jdk	eq	1.8.0
oracle:jre	oracle jre	eq	1.5.0
oracle:jre	oracle jre	eq	1.6.0
oracle:jre	oracle jre	eq	1.7.0
oracle:jre	oracle jre	eq	1.8.0