Lucene search

OracleCVE-2015-4871

HistoryOct 21, 2015 - 11:59 p.m.

CVE-2015-4871

2015-10-2123:59:35

oracle

web.nvd.nist.gov

cve-2015-4871

unspecified vulnerability

oracle java se

remote attackers

confidentiality

integrity

libraries

nvd

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

4.4

Confidence

Low

EPSS

0.006

Percentile

78.4%

JSON

Unspecified vulnerability in Oracle Java SE 7u85 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.

Affected configurations

Nvd

Node

oraclejdkMatch1.7.0update85

oraclejreMatch1.7.0update_85

VendorProductVersionCPE
oraclejdk1.7.0cpe:2.3:a:oracle:jdk:1.7.0:update85:*:*:*:*:*:*
oraclejre1.7.0cpe:2.3:a:oracle:jre:1.7.0:update_85:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	jdk	1.7.0	cpe:2.3:a:oracle:jdk:1.7.0:update85::::::
oracle	jre	1.7.0	cpe:2.3:a:oracle:jre:1.7.0:update_85::::::

References

lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00001.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00003.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00006.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00014.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00042.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00043.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00044.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00047.html

lists.opensuse.org/opensuse-security-announce/2016-01/msg00048.html

rhn.redhat.com/errata/RHSA-2015-1927.html

rhn.redhat.com/errata/RHSA-2015-2506.html

rhn.redhat.com/errata/RHSA-2015-2507.html

rhn.redhat.com/errata/RHSA-2015-2509.html

rhn.redhat.com/errata/RHSA-2016-0053.html

rhn.redhat.com/errata/RHSA-2016-0054.html

www.debian.org/security/2015/dsa-3381

www.debian.org/security/2015/dsa-3401

www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

www.securityfocus.com/bid/77238

www.securitytracker.com/id/1033884

www.ubuntu.com/usn/USN-2818-1

access.redhat.com/errata/RHSA-2016:1430

security.gentoo.org/glsa/201603-11

security.gentoo.org/glsa/201603-14

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

4.4

Confidence

Low

EPSS

0.006

Percentile

78.4%

JSON

Related for CVE-2015-4871