Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2015-5236

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was discovered that the IcedTea-Web used codebase attribute of the tag on the HTML page that hosts Java applet in the Same Origin Policy SOP checks. As the...

7.5CVSS7.1AI score0.00708EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.10 views

RHEL 7 : icedtea-web (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - icedtea-web: SOP checks based on codebase and not applet origin CVE-2015-5236 Note that Nessus has not tested for...

7.5CVSS7.7AI score0.00708EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.15 views

RHEL 6 : icedtea-web (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - icedtea-web: SOP checks based on codebase and not applet origin CVE-2015-5236 Note that Nessus has not tested for...

7.5CVSS7.7AI score0.00708EPSS
Exploits1References1
Circl
Circl
added 2022/07/07 8:18 p.m.8 views

CVE-2015-5236

creationtimestamp| type| source ---|---|--- 2022-07-07 20:18:21+00:00| seen| https://t.me/cibsecurity/45754...

7.5CVSS7.3AI score0.00708EPSS
Exploits1References1
OSV
OSV
added 2022/07/07 4:15 p.m.3 views

DEBIAN-CVE-2015-5236

It was discovered that the IcedTea-Web used codebase attribute of the tag on the HTML page that hosts Java applet in the Same Origin Policy SOP checks. As the specified codebase does not have to match the applet's actual origin, this allowed malicious site to bypass SOP via spoofed codebase value...

7.5CVSS7.3AI score0.00708EPSS
Exploits1References1
NVD
NVD
added 2022/07/07 4:15 p.m.34 views

CVE-2015-5236

It was discovered that the IcedTea-Web used codebase attribute of the tag on the HTML page that hosts Java applet in the Same Origin Policy SOP checks. As the specified codebase does not have to match the applet's actual origin, this allowed malicious site to bypass SOP via spoofed codebase value...

7.5CVSS0.00708EPSS
Exploits1References1
OSV
OSV
added 2022/07/07 4:15 p.m.4 views

UBUNTU-CVE-2015-5236

It was discovered that the IcedTea-Web used codebase attribute of the tag on the HTML page that hosts Java applet in the Same Origin Policy SOP checks. As the specified codebase does not have to match the applet's actual origin, this allowed malicious site to bypass SOP via spoofed codebase value...

7.5CVSS5.7AI score0.00708EPSS
Exploits1References3
CVE
CVE
added 2022/07/07 3:54 p.m.65 views

CVE-2015-5236

The CVE-2015-5236 entry concerns IcedTea-Web, where the codebase attribute of the HTML tag used in the SOP check is not required to match the applet’s actual origin. This could allow a malicious site to bypass Same Origin Policy by spoofing the codebase value. Public documentation provided refer...

7.5CVSS7.4AI score0.00708EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder