Lucene search

[email protected]CVE-2015-0478

HistoryApr 16, 2015 - 4:59 p.m.

CVE-2015-0478

2015-04-1616:59:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2015-0478

oracle java se

vulnerability

confidentiality

jce

nvd

3.8 Low

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.009 Low

EPSS

Percentile

82.1%

JSON

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect confidentiality via vectors related to JCE.

CPENameOperatorVersion
oracle:jrockitoracle jrockiteqr28.3.5
oracle:jdkoracle jdkeq1.8.0
oracle:jdkoracle jdkeq1.5.0
oracle:jdkoracle jdkeq1.6.0
oracle:jdkoracle jdkeq1.7.0
oracle:jreoracle jreeq1.5.0
oracle:jreoracle jreeq1.6.0
oracle:jreoracle jreeq1.7.0
oracle:jreoracle jreeq1.8.0

CPE	Name	Operator	Version
oracle:jrockit	oracle jrockit	eq	r28.3.5
oracle:jdk	oracle jdk	eq	1.8.0
oracle:jdk	oracle jdk	eq	1.5.0
oracle:jdk	oracle jdk	eq	1.6.0
oracle:jdk	oracle jdk	eq	1.7.0
oracle:jre	oracle jre	eq	1.5.0
oracle:jre	oracle jre	eq	1.6.0
oracle:jre	oracle jre	eq	1.7.0
oracle:jre	oracle jre	eq	1.8.0

References

advisories.mageia.org/MGASA-2015-0158.html

lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html

lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html

lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00001.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00003.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00006.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html

rhn.redhat.com/errata/RHSA-2015-0806.html

rhn.redhat.com/errata/RHSA-2015-0807.html

rhn.redhat.com/errata/RHSA-2015-0808.html

rhn.redhat.com/errata/RHSA-2015-0809.html

rhn.redhat.com/errata/RHSA-2015-0854.html

rhn.redhat.com/errata/RHSA-2015-0857.html

rhn.redhat.com/errata/RHSA-2015-0858.html

rhn.redhat.com/errata/RHSA-2015-1006.html

rhn.redhat.com/errata/RHSA-2015-1007.html

rhn.redhat.com/errata/RHSA-2015-1020.html

rhn.redhat.com/errata/RHSA-2015-1021.html

rhn.redhat.com/errata/RHSA-2015-1091.html

www-01.ibm.com/support/docview.wss?uid=swg21883640

www-304.ibm.com/support/docview.wss?uid=swg21903565

www-304.ibm.com/support/docview.wss?uid=swg21960194

www.debian.org/security/2015/dsa-3234

www.debian.org/security/2015/dsa-3235

www.debian.org/security/2015/dsa-3316

www.mandriva.com/security/advisories?name=MDVSA-2015:212

www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

www.securityfocus.com/bid/74147

www.securitytracker.com/id/1032120

www.securitytracker.com/id/1035517

www.ubuntu.com/usn/USN-2573-1

www.ubuntu.com/usn/USN-2574-1

security.gentoo.org/glsa/201603-11

3.8 Low

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.009 Low

EPSS

Percentile

82.1%

JSON

Related for CVE-2015-0478

prion1 ubuntucve1 debiancve1 threatpost1 f52 ibm59 nessus43 ubuntu2 openvas39 oraclelinux4 debian3 veracode10 mageia1 centos4 redhat10 osv3 archlinux6 amazon3 suse5 kaspersky1