Lucene search

[email protected]CVE-2015-4844

HistoryOct 21, 2015 - 11:59 p.m.

CVE-2015-4844

2015-10-2123:59:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

106

cve-2015-4844

oracle java

vulnerability

remote attackers

confidentiality

integrity

availability

6.1 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.023 Low

EPSS

Percentile

89.5%

JSON

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CPENameOperatorVersion
oracle:jreoracle jreeq1.7.0
oracle:jreoracle jreeq1.8.0
oracle:jreoracle jreeq1.6.0
oracle:jdkoracle jdkeq1.8.0
oracle:jdkoracle jdkeq1.6.0
oracle:jdkoracle jdkeq1.7.0

CPE	Name	Operator	Version
oracle:jre	oracle jre	eq	1.7.0
oracle:jre	oracle jre	eq	1.8.0
oracle:jre	oracle jre	eq	1.6.0
oracle:jdk	oracle jdk	eq	1.8.0
oracle:jdk	oracle jdk	eq	1.6.0
oracle:jdk	oracle jdk	eq	1.7.0

References

lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html

lists.opensuse.org/opensuse-security-announce/2015-11/msg00001.html

lists.opensuse.org/opensuse-security-announce/2015-11/msg00008.html

lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html

lists.opensuse.org/opensuse-security-announce/2015-11/msg00010.html

lists.opensuse.org/opensuse-security-announce/2015-11/msg00019.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00001.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00003.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00006.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00014.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html

rhn.redhat.com/errata/RHSA-2015-1919.html

rhn.redhat.com/errata/RHSA-2015-1920.html

rhn.redhat.com/errata/RHSA-2015-1921.html

rhn.redhat.com/errata/RHSA-2015-1926.html

rhn.redhat.com/errata/RHSA-2015-1927.html

rhn.redhat.com/errata/RHSA-2015-1928.html

rhn.redhat.com/errata/RHSA-2015-2506.html

rhn.redhat.com/errata/RHSA-2015-2507.html

rhn.redhat.com/errata/RHSA-2015-2508.html

rhn.redhat.com/errata/RHSA-2015-2509.html

rhn.redhat.com/errata/RHSA-2015-2518.html

www.debian.org/security/2015/dsa-3381

www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

www.securityfocus.com/bid/77164

www.securitytracker.com/id/1033884

www.ubuntu.com/usn/USN-2784-1

www.ubuntu.com/usn/USN-2827-1

access.redhat.com/errata/RHSA-2016:1430

security.gentoo.org/glsa/201603-11

security.gentoo.org/glsa/201603-14

6.1 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.023 Low

EPSS

Percentile

89.5%

JSON

Related for CVE-2015-4844

prion1 debiancve1 ubuntucve2 openvas47 mageia2 nessus57 osv2 debian6 ubuntu3 cloudfoundry1 ibm13 redhat12 photon1 veracode19 centos4 oraclelinux4 amazon3 suse11 archlinux6 aix1 f52 freebsd1