Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K17136
HistoryAug 24, 2015 - 12:00 a.m.

K17136 : Java and JRockit vulnerabilities CVE-2015-0478 and CVE-2015-0488

2015-08-2400:00:00
my.f5.com
21

AI Score

4.4

Confidence

Low

EPSS

0.063

Percentile

93.7%

JSON

Security Advisory Description

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect confidentiality via vectors related to JCE.Per Oracle: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service.

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE. Per Oracle: Applies to client and server deployment of JSSE.
Impact
These vulnerabilities can allow a remote attacker to affect confidentiality via vectors related to JCE, or affect availability via vectors related to JSSE.

Related

f5 1
ibm 68
nessus 39
ubuntucve 2
cve 2
cvelist 2
prion 2
debiancve 2
nvd 2
threatpost 1
ubuntu 2
openvas 33
veracode 9
archlinux 6
mageia 1
centos 4
oraclelinux 4
debian 3
osv 3
redhat 7
amazon 3
suse 3
f5
f5
SOL17136 - Java and JRockit vulnerabilities CVE-2015-0478 and CVE-2015-0488
2015-08-24 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Oracle Java SE Runtime Environment, Version 1.7.0 affect IBM Flex System Manager (FSM) SMIA Configuration Tool (CVE-2015-0488, CVE-2015-0478)
2019-01-31 02:10:01
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM SPSS Modeler (CVE-2015-4000, CVE-2015-0478, CVE-2015-0488)
2018-06-16 13:18:25
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Cognos Metrics Manager (CVE-2015-0478, CVE-2015-0488, CVE-2015-2808)
2018-06-15 23:13:41
nessus
nessus
Oracle JRockit R28.3.5 Multiple Vulnerabilities (April 2015 CPU) (FREAK)
2015-04-16 00:00:00
Ubuntu 14.04 LTS : OpenJDK 7 vulnerabilities (USN-2574-1)
2015-04-22 00:00:00
Ubuntu 10.04 LTS / 12.04 LTS : openjdk-6 vulnerabilities (USN-2573-1)
2015-04-22 00:00:00
ubuntucve
ubuntucve
CVE-2015-0478
2015-04-15 00:00:00
CVE-2015-0488
2015-04-15 00:00:00
cve
cve
CVE-2015-0478
2015-04-16 16:59:32
CVE-2015-0488
2015-04-16 16:59:39
cvelist
cvelist
CVE-2015-0478
2015-04-16 16:00:00
CVE-2015-0488
2015-04-16 16:00:00
prion
prion
Buffer overflow
2015-04-16 16:59:00
Buffer overflow
2015-04-16 16:59:00
debiancve
debiancve
CVE-2015-0488
2015-04-16 16:59:39
CVE-2015-0478
2015-04-16 16:59:32
nvd
nvd
CVE-2015-0478
2015-04-16 16:59:32
CVE-2015-0488
2015-04-16 16:59:39
threatpost
threatpost
Flawed TLS Implementations Leak RSA Keys
2015-09-08 15:09:28
ubuntu
ubuntu
OpenJDK 6 vulnerabilities
2015-04-21 00:00:00
OpenJDK 7 vulnerabilities
2015-04-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2574-1)
2015-04-22 00:00:00
Ubuntu: Security Advisory (USN-2573-1)
2015-04-22 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-516)
2015-09-08 00:00:00
veracode
veracode
Sandbox Protection Bypass
2019-05-02 05:13:14
Sandbox Protection Bypass
2019-05-02 05:13:14
Denial Of Service (DoS)
2019-05-02 05:13:14
archlinux
archlinux
jre7-openjdk-headless: multiple issues
2015-04-17 00:00:00
jdk7-openjdk: multiple issues
2015-04-17 00:00:00
jre7-openjdk: multiple issues
2015-04-17 00:00:00
mageia
mageia
Updated java-1.7.0-openjdk packages fix security vulnerabilities
2015-04-15 20:22:53
centos
centos
java security update
2015-04-15 11:08:38
java security update
2015-04-15 11:09:51
java security update
2015-04-15 11:47:27
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2015-04-15 00:00:00
java-1.6.0-openjdk security update
2015-04-15 00:00:00
java-1.7.0-openjdk security update
2015-04-15 00:00:00
debian
debian
[SECURITY] [DSA 3234-1] openjdk-6 security update
2015-04-24 18:39:47
[SECURITY] [DSA 3235-1] openjdk-7 security update
2015-04-24 18:41:20
[SECURITY] [DLA 213-1] openjdk-6 security update
2015-04-30 13:41:01
osv
osv
openjdk-6 - security update
2015-04-30 00:00:00
openjdk-6 - security update
2015-04-24 00:00:00
openjdk-7 - security update
2015-04-24 00:00:00
redhat
redhat
(RHSA-2015:0807) Important: java-1.7.0-openjdk security update
2015-04-14 00:00:00
(RHSA-2015:0808) Important: java-1.6.0-openjdk security update
2015-04-14 00:00:00
(RHSA-2015:0806) Critical: java-1.7.0-openjdk security update
2015-04-14 00:00:00
amazon
amazon
Important: java-1.7.0-openjdk
2015-04-23 00:44:00
Important: java-1.6.0-openjdk
2015-04-23 00:44:00
Important: java-1.8.0-openjdk
2015-05-05 15:44:00
suse
suse
Security update for java-1_7_0-openjdk (important)
2015-04-27 13:05:55
Security update for java-1_7_0-openjdk (critical)
2015-05-07 21:04:54
Security update for IBM Java (important)
2015-06-18 16:05:20

AI Score

4.4

Confidence

Low

EPSS

0.063

Percentile

93.7%

JSON
Related for F5:K17136
f51ibm68nessus39ubuntucve2cve2cvelist2prion2debiancve2nvd2threatpost1ubuntu2openvas33veracode9archlinux6mageia1centos4oraclelinux4debian3osv3redhat7amazon3suse3