Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2015 Greenbone AGOPENVAS:1361412562310805727
HistoryJul 20, 2015 - 12:00 a.m.

Oracle Java SE JRE Multiple Unspecified Vulnerabilities-02 (Jul 2015) - Windows

2015-07-2000:00:00
Copyright (C) 2015 Greenbone AG
plugins.openvas.org
6

5.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

85.0%

JSON

Oracle Java SE JRE is prone to multiple unspecified vulnerabilities.

# SPDX-FileCopyrightText: 2015 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:oracle:jre";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.805727");
  script_version("2024-02-20T14:37:13+0000");
  script_cve_id("CVE-2015-4736", "CVE-2015-4729", "CVE-2015-2613",
                "CVE-2015-2619", "CVE-2015-2597");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-02-20 14:37:13 +0000 (Tue, 20 Feb 2024)");
  script_tag(name:"creation_date", value:"2015-07-20 17:10:19 +0530 (Mon, 20 Jul 2015)");
  script_name("Oracle Java SE JRE Multiple Unspecified Vulnerabilities-02 (Jul 2015) - Windows");

  script_tag(name:"summary", value:"Oracle Java SE JRE is prone to multiple unspecified vulnerabilities.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"Multiple errors exist due to unspecified
  flaws related to multiple unspecified vectors.");

  script_tag(name:"impact", value:"Successful exploitation will allow attackers
  to have an impact on confidentiality, integrity, and availability.");

  script_tag(name:"affected", value:"Oracle Java SE 7 update 80 and 8 update
  45 on Windows.");

  script_tag(name:"solution", value:"Apply the patch from the referenced advisory.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"registry");
  script_xref(name:"URL", value:"http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/75850");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/75892");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/75871");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/75881");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/75856");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2015 Greenbone AG");
  script_family("General");
  script_dependencies("gb_java_prdts_detect_portable_win.nasl");
  script_mandatory_keys("Sun/Java/JRE/Win/Ver");
  exit(0);
}


include("host_details.inc");
include("version_func.inc");

if(!jreVer = get_app_version(cpe:CPE)){
  exit(0);
}

if(jreVer =~ "^(1\.(8|7))")
{
  if(version_in_range(version:jreVer, test_version:"1.7.0", test_version2:"1.7.0.80")||
     version_in_range(version:jreVer, test_version:"1.8.0", test_version2:"1.8.0.45"))
  {
    report = report_fixed_ver(installed_version:jreVer, fixed_version: "Apply the patch from the referenced advisory.");
    security_message(data:report);
    exit(0);
  }
}

Related

openvas 19
ibm 89
nessus 23
ubuntucve 5
f5 2
debiancve 5
cve 5
prion 5
kaspersky 1
suse 7
redhat 4
aix 1
googleprojectzero 1
gentoo 2
ubuntu 2
archlinux 1
debian 2
osv 1
securityvulns 1
oracle 1
openvas
openvas
Oracle Java SE JRE Multiple Unspecified Vulnerabilities-02 (Jul 2015) - Linux
2015-07-20 00:00:00
F5 BIG-IP - Java vulnerability CVE-2015-4736
2015-09-18 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1319-1)
2021-04-19 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM GPFS Native RAID (CVE-2015-2638, CVE-2015-4760, CVE-2015-2619, CVE-2015-2613)
2021-03-08 18:46:02
Security Bulletin: Vulnerability in IBM Java SDK affects IBM SONAS (CVE-2015-2613)
2018-06-18 00:09:55
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect MegaRAID Storage Manager
2019-01-31 02:25:02
nessus
nessus
F5 Networks BIG-IP : Java vulnerability (SOL17170) (deprecated)
2015-08-27 00:00:00
openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2015-512) (Bar Mitzvah) (Logjam)
2015-07-27 00:00:00
openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2015-511) (Bar Mitzvah) (Logjam)
2015-07-27 00:00:00
ubuntucve
ubuntucve
CVE-2015-4736
2015-07-16 00:00:00
CVE-2015-4729
2015-07-16 00:00:00
CVE-2015-2613
2015-07-16 00:00:00
f5
f5
K17170 : Java vulnerability CVE-2015-4736
2015-08-26 00:00:00
SOL17170 - Java vulnerability CVE-2015-4736
2015-08-26 00:00:00
debiancve
debiancve
CVE-2015-4736
2015-07-16 11:00:00
CVE-2015-4729
2015-07-16 11:00:00
CVE-2015-2597
2015-07-16 10:59:00
cve
cve
CVE-2015-4729
2015-07-16 11:00:00
CVE-2015-4736
2015-07-16 11:00:00
CVE-2015-2597
2015-07-16 10:59:00
prion
prion
Design/Logic Flaw
2015-07-16 11:00:00
Design/Logic Flaw
2015-07-16 11:00:00
Buffer overflow
2015-07-16 10:59:00
kaspersky
kaspersky
KLA10629 Multiple vulnerabilities in Oracle Java SE
2015-07-14 00:00:00
suse
suse
Security update for java-1_7_0-openjdk (important)
2015-07-30 16:12:47
Security update for java-1_8_0-openjdk (important)
2015-07-26 21:09:08
Security update for java-1_7_0-openjdk (important)
2015-07-26 21:08:40
redhat
redhat
(RHSA-2015:1485) Critical: java-1.7.1-ibm security update
2015-07-22 00:00:00
(RHSA-2015:1488) Critical: java-1.7.0-ibm security update
2015-07-23 00:00:00
(RHSA-2015:1241) Critical: java-1.8.0-oracle security update
2015-07-17 07:49:43
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2015-07-31 13:04:25
googleprojectzero
googleprojectzero
Enabling QR codes in Internet Explorer, or a story of a cross-platform memory disclosure
2015-09-14 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2016-03-12 00:00:00
IcedTea: Multiple vulnerabilities
2016-03-12 00:00:00
ubuntu
ubuntu
OpenJDK 6 vulnerabilities
2015-08-06 00:00:00
OpenJDK 7 vulnerabilities
2015-07-30 00:00:00
archlinux
archlinux
jre7-openjdk: multiple issues
2015-07-22 00:00:00
debian
debian
[SECURITY] [DSA 3339-1] openjdk-6 security update
2015-08-19 20:19:42
[SECURITY] [DSA 3316-1] openjdk-7 security update
2015-07-25 10:14:19
osv
osv
openjdk-7 - security update
2015-07-25 00:00:00
securityvulns
securityvulns
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2015-07-20 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2015
2015-07-14 00:00:00

5.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

85.0%

JSON
Related for OPENVAS:1361412562310805727
openvas19ibm89nessus23ubuntucve5f52debiancve5cve5prion5kaspersky1suse7redhat4aix1googleprojectzero1gentoo2ubuntu2archlinux1debian2osv1securityvulns1oracle1