Jrockit@r28.3.6 Security Vulnerabilities and Issues — Jrockit@r28.3.6 CVE List

Lucene search

OracleJrockitr28.3.6

5 matches found

CVE•added 2015/05/21 12:59 a.m.•1130 views

CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then ...

4.3CVSS4.8AI score0.94027EPSS

CVE•added 2015/07/16 11:0 a.m.•258 views

CVE-2015-4748

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and Embedded 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security.

7.6CVSS4.6AI score0.1225EPSS

CVE•added 2015/07/16 10:59 a.m.•231 views

CVE-2015-2601

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, JRockit R28.3.6, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JCE.

5CVSS4.8AI score0.02499EPSS

CVE•added 2015/07/16 10:59 a.m.•226 views

CVE-2015-2625

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JSSE.

2.6CVSS4.8AI score0.01864EPSS

CVE•added 2015/07/16 11:0 a.m.•225 views

CVE-2015-4749

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect availability via vectors related to JNDI.

4.3CVSS4.9AI score0.04374EPSS