CVE-2015-0458
Published Apr 16, 2015
Last updated 3 years ago
Overview
- Description
- Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
- Source
- secalert_us@oracle.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.6
- Impact score
- 10
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Evaluator
- Comment
- Per Oracle: Applies to client deployment of Java only. This vulnerability can be exploited only through sandboxed Java Web Start applications and sandboxed Java applets. (http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html)
- Impact
- -
- Solution
- -
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update91:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "464AB16C-B25D-4FCA-AAA2-C6F4CF944628" }, { "criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update76:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2C5FA21-4D3B-4739-92A1-B87A1A63F29B" }, { "criteria": "cpe:2.3:a:oracle:jdk:1.8.0:update40:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8348D050-22EF-49AC-960A-ADBA1441FFC0" }, { "criteria": "cpe:2.3:a:oracle:jre:1.6.0:update91:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5937109-8325-4D2B-B15E-195833703569" }, { "criteria": "cpe:2.3:a:oracle:jre:1.7.0:update76:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50E5F104-C20F-4E6B-AD70-8FEC1B9A9B46" }, { "criteria": "cpe:2.3:a:oracle:jre:1.8.0:update40:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB2AF8BC-7643-4CBF-83C0-CA4656AC4FB4" } ], "operator": "OR" } ] }, { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:o:novell:suse_linux_enterprise_desktop:11.0:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A46AFB60-4775-48A9-81FA-5A54CEDA7625" }, { "criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081" } ], "operator": "OR" } ] } ]