CVE-2015-2597

Advisory lineage Upstream: 0 Downstream: 3

Downstream

OPENSUSE-SU-2024:10197-1 SUSE-SU-2015:1319-1 SUSE-SU-2015:1320-1

Modified

Published: 16 Jul 2015, 10:00

Last modified:06 Aug 2024, 05:17

Vulnerability Summary

Overall Risk (default)

medium

29/100

CVSS Score

7.2 HIGH

v2.0 (nvd)

EPSS Score

0.13% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

16 Jul 2015, 10:00

Published

Vulnerability first disclosed

06 Aug 2024, 05:17

Last Modified

Vulnerability information updated

Description

Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install.

CVSS Metrics

v2.0•HIGH•Score: 7.2AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 0.13%• Percentile: 32%

Affected Systems

oracle•jdk
1.7.0:update80 | 1.8.0:update45
oracle•jre
1.7.0:update_80 | 1.8.0:update_45

References (7)

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.securitytracker.com/id/1032910
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html
http://www.securityfocus.com/bid/75856