Lucene search

K

[email protected]CVE-2015-0458

HistoryApr 16, 2015 - 4:59 p.m.

CVE-2015-0458

2015-04-1616:59:16

[email protected]

web.nvd.nist.gov

49

cve-2015-0458

oracle java

unspecified vulnerability

remote attackers

confidentiality

integrity

availability

nvd

deployment

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

3.6 Low

AI Score

Confidence

High

0.036 Low

EPSS

Percentile

91.7%

Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

Affected configurations

NVD

Node

oraclejdkMatch1.6.0update91

OR

oraclejdkMatch1.7.0update76

OR

oraclejdkMatch1.8.0update40

OR

oraclejreMatch1.6.0update91

OR

oraclejreMatch1.7.0update76

OR

oraclejreMatch1.8.0update40

Node

novellsuse_linux_enterprise_desktopMatch11.0sp3

OR

opensuseopensuseMatch13.2

CPENameOperatorVersion
oracle:jdkoracle jdkeq1.6.0
oracle:jdkoracle jdkeq1.7.0
oracle:jdkoracle jdkeq1.8.0
oracle:jreoracle jreeq1.6.0
oracle:jreoracle jreeq1.7.0
oracle:jreoracle jreeq1.8.0

References

lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html

lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html

lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00001.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00003.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00006.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html

rhn.redhat.com/errata/RHSA-2015-0854.html

rhn.redhat.com/errata/RHSA-2015-0857.html

rhn.redhat.com/errata/RHSA-2015-0858.html

rhn.redhat.com/errata/RHSA-2015-1006.html

rhn.redhat.com/errata/RHSA-2015-1007.html

rhn.redhat.com/errata/RHSA-2015-1020.html

rhn.redhat.com/errata/RHSA-2015-1091.html

www-01.ibm.com/support/docview.wss?uid=swg21883640

www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

www.securityfocus.com/bid/74141

www.securitytracker.com/id/1032120

security.gentoo.org/glsa/201603-11

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

3.6 Low

AI Score

Confidence

High

0.036 Low

EPSS

Percentile

91.7%

Related for CVE-2015-0458

cvelist1 debiancve1 prion1 openvas25 nvd1 ubuntucve1 ibm12 nessus30 redhat7 f52 suse16 veracode4 kaspersky2 aix1 gentoo1 securityvulns1 oracle1