CVE-2015-2613

DEB

Medium

Unspecified vulnerability in Oracle Java SE 7u80 and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentia…

CVSS

5.0

Medium

EPSS

0.05

p90

Published

2015-01-01

Updated

2015-01-01

Description

Unspecified vulnerability in Oracle Java SE 7u80 and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JCE.

Tags · CWE

CWE-358

Affected products

Java-1.7.0-ibmJava-1.7.0-oracleJava-1.7.0-oracleJava-1.7.0-oracleJava-1.7.1-ibmJava-1.7.1-ibmJava-1.8.0-oracleJava-1.8.0-oracleOpenjdk-6Openjdk-6Openjdk-6Openjdk-6Openjdk-6Openjdk-7Openjdk-7Openjdk-7Openjdk-7Openjdk-7Openjdk-8Openjdk-8

CVSS vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Timeline

2015-01-01

Published

2015-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Authentication

Au: N

None (N)

Confidentiality Impact

C: P

Partial

Integrity Impact

I: N

None (N)

Availability Impact

A: N

None (N)

Exploit indicators

EPSS

0.046 · p90

Known exploited (KEV)

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected products

Debian

Openjdk-6 Openjdk-7 Openjdk-8

Canonical

Openjdk-6 Openjdk-8 Openjdk-7

Red Hat

Java-1.7.0-oracle Java-1.7.0-ibm Java-1.7.1-ibm Java-1.8.0-oracle

Oracle

Jre Jdk

Product	Vendor	Status
java-1.7.0-ibm		Tracked
java-1.7.0-oracle		Tracked
java-1.7.0-oracle		Tracked
java-1.7.0-oracle		Tracked
java-1.7.1-ibm		Tracked
java-1.7.1-ibm		Tracked
java-1.8.0-oracle		Tracked
java-1.8.0-oracle		Tracked
openjdk-6		Tracked
openjdk-6		Tracked
openjdk-6		Tracked
openjdk-6		Tracked
openjdk-6		Tracked
openjdk-7		Tracked
openjdk-7		Tracked
openjdk-7		Tracked
openjdk-7		Tracked
openjdk-7		Tracked
openjdk-8		Tracked
openjdk-8		Tracked

Showing first 20 of 24

Source databases

DEB

CVE

RED

UBU

Related vulnerabilities

BDU:2015-11011