CVE-2015-4810

MEDIUM

Description

Unspecified vulnerability in Oracle Java SE 7u85 and 8u60 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

References

http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00006.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00014.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html

http://rhn.redhat.com/errata/RHSA-2015-1926.html

http://rhn.redhat.com/errata/RHSA-2015-1927.html

http://rhn.redhat.com/errata/RHSA-2015-2506.html

http://rhn.redhat.com/errata/RHSA-2015-2507.html

http://rhn.redhat.com/errata/RHSA-2015-2509.html

http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

http://www.securityfocus.com/bid/77229

http://www.securitytracker.com/id/1033884

https://access.redhat.com/errata/RHSA-2016:1430

https://security.gentoo.org/glsa/201603-11

Details

Source: MITRE

Published: 2015-10-21

Updated: 2020-09-08

Type: NVD-CWE-noinfo

Risk Information

CVSS v2.0

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.4

Severity: MEDIUM

Vulnerable Software

Configuration 1

cpe:2.3:a:oracle:jdk:1.7.0:update_85:*:*:*:*:*:*

cpe:2.3:a:oracle:jdk:1.8.0:update60:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.7.0:update_85:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.8.0:update_60:*:*:*:*:*:*

Tenable Plugins

View all (23 total)

ID	Name	Product	Family	Severity
700652	Oracle Java SE 6 < Update 105 / 7 < Update 91 / 8 < Update 65 Multiple Vulnerabilities (October 2015 CPU)	Nessus Network Monitor	Web Clients	critical
119972	SUSE SLES12 Security Update : java-1_6_0-ibm (SUSE-SU-2015:2192-1) (Bar Mitzvah) (FREAK)	Nessus	SuSE Local Security Checks	critical
92400	RHEL 5 / 6 : java-1.7.0-ibm and java-1.7.1-ibm (RHSA-2016:1430) (SLOTH)	Nessus	Red Hat Local Security Checks	critical
9352	Oracle Java SE 6 < Update 105 / 7 < Update 91 / 8 < Update 65 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	critical
89904	GLSA-201603-11 : Oracle JRE/JDK: Multiple vulnerabilities (Logjam)	Nessus	Gentoo Local Security Checks	critical
88537	openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2016-106) (SLOTH)	Nessus	SuSE Local Security Checks	critical
87914	SUSE SLES10 Security Update : java-1_6_0-ibm (SUSE-SU-2016:0113-1) (Bar Mitzvah) (FREAK)	Nessus	SuSE Local Security Checks	critical
87405	SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2015:2268-1)	Nessus	SuSE Local Security Checks	critical
87404	SUSE SLES12 Security Update : java-1_7_1-ibm (SUSE-SU-2015:2168-2) (FREAK)	Nessus	SuSE Local Security Checks	critical
87386	FreeBSD : java -- multiple vulnerabilities (a5934ba8-a376-11e5-85e9-14dae9d210b8)	Nessus	FreeBSD Local Security Checks	critical
87374	AIX Java Advisory : java_oct2015_advisory.asc (October 2015 CPU)	Nessus	AIX Local Security Checks	critical
87277	SUSE SLES11 Security Update : java-1_7_0-ibm (SUSE-SU-2015:2216-1) (FREAK)	Nessus	SuSE Local Security Checks	critical
87200	SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2015:2182-1) (FREAK)	Nessus	SuSE Local Security Checks	critical
87181	SUSE SLES12 Security Update : java-1_7_1-ibm (SUSE-SU-2015:2168-1) (FREAK)	Nessus	SuSE Local Security Checks	critical
87180	SUSE SLES11 Security Update : java-1_6_0-ibm (SUSE-SU-2015:2166-1) (Bar Mitzvah) (FREAK)	Nessus	SuSE Local Security Checks	critical
87050	RHEL 7 : java-1.8.0-ibm (RHSA-2015:2509)	Nessus	Red Hat Local Security Checks	critical
87048	RHEL 5 : java-1.7.0-ibm (RHSA-2015:2507)	Nessus	Red Hat Local Security Checks	critical
87047	RHEL 6 / 7 : java-1.7.1-ibm (RHSA-2015:2506)	Nessus	Red Hat Local Security Checks	critical
86731	openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2015-696)	Nessus	SuSE Local Security Checks	critical
86561	RHEL 5 / 6 / 7 : java-1.7.0-oracle (RHSA-2015:1927)	Nessus	Red Hat Local Security Checks	critical
86560	RHEL 6 / 7 : java-1.8.0-oracle (RHSA-2015:1926)	Nessus	Red Hat Local Security Checks	critical
86543	Oracle Java SE Multiple Vulnerabilities (October 2015 CPU) (Unix)	Nessus	Misc.	critical
86542	Oracle Java SE Multiple Vulnerabilities (October 2015 CPU)	Nessus	Windows	critical

CVE-2015-4810

MEDIUM

Description

References

Details

Risk Information

CVSS v2.0

Vulnerable Software

Configuration 1

Tenable Plugins

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical