CVE-2015-4868

2015-10-2123:59:32

oracle

web.nvd.nist.gov

151

cve

2015

4868

oracle

java

8u60

embedded 8u51

vulnerability

remote attackers

confidentiality

integrity

availability

libraries

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

4.8

Confidence

Low

EPSS

0.011

Percentile

84.7%

JSON

Unspecified vulnerability in Oracle Java SE 8u60 and Java SE Embedded 8u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

Affected configurations

Nvd

Node

oraclejdkMatch1.8.0update51

oraclejdkMatch1.8.0update60

oraclejreMatch1.8.0update_51

oraclejreMatch1.8.0update_60

VendorProductVersionCPE
oraclejdk1.8.0cpe:2.3:a:oracle:jdk:1.8.0:update51:*:*:*:*:*:*
oraclejdk1.8.0cpe:2.3:a:oracle:jdk:1.8.0:update60:*:*:*:*:*:*
oraclejre1.8.0cpe:2.3:a:oracle:jre:1.8.0:update_51:*:*:*:*:*:*
oraclejre1.8.0cpe:2.3:a:oracle:jre:1.8.0:update_60:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	jdk	1.8.0	cpe:2.3:a:oracle:jdk:1.8.0:update51::::::
oracle	jdk	1.8.0	cpe:2.3:a:oracle:jdk:1.8.0:update60::::::
oracle	jre	1.8.0	cpe:2.3:a:oracle:jre:1.8.0:update_51::::::
oracle	jre	1.8.0	cpe:2.3:a:oracle:jre:1.8.0:update_60::::::