5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.008 Low
EPSS
Percentile
81.3%
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, JRockit
R28.3.6, and Java SE Embedded 7u75 and 8u33 allows remote attackers to
affect confidentiality via vectors related to JCE.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 12.04 | noarch | openjdk-6 | < 6b36-1.13.8-0ubuntu1~12.04 | UNKNOWN |
ubuntu | 14.04 | noarch | openjdk-6 | < 6b36-1.13.8-0ubuntu1~14.04 | UNKNOWN |
ubuntu | 15.04 | noarch | openjdk-6 | < 6b36-1.13.8-0ubuntu1~15.04.1 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-7 | < 7u79-2.5.6-0ubuntu1.12.04.1 | UNKNOWN |
ubuntu | 14.04 | noarch | openjdk-7 | < 7u79-2.5.6-0ubuntu1.14.04.1 | UNKNOWN |
ubuntu | 15.04 | noarch | openjdk-7 | < 7u79-2.5.6-0ubuntu1.15.04.1 | UNKNOWN |
ubuntu | 15.10 | noarch | openjdk-8 | < 8u66-b17-1 | UNKNOWN |
www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
launchpad.net/bugs/cve/CVE-2015-2601
nvd.nist.gov/vuln/detail/CVE-2015-2601
security-tracker.debian.org/tracker/CVE-2015-2601
ubuntu.com/security/notices/USN-2696-1
ubuntu.com/security/notices/USN-2706-1
www.cve.org/CVERecord?id=CVE-2015-2601