CVE-2015-0395 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9.3 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 96%

Affected Products (NVD)

Vendor	Product	Version
canonical	ubuntu_linux	10.04
canonical	ubuntu_linux	12.04
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	14.10
debian	debian_linux	7.0
debian	debian_linux	8.0
novell	suse_linux_enterprise_server	11.0:sp3
novell	suse_linux_enterprise_server	12.0
opensuse	opensuse	13.2
redhat	enterprise_linux	6.0
redhat	enterprise_linux	7.0
oracle	jdk	1.5.0
oracle	jdk	1.6.0
oracle	jdk	1.7.0
oracle	jdk	1.8.0
oracle	jre	1.5.0
oracle	jre	1.6.0
oracle	jre	1.7.0
oracle	jre	1.8.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

openjdk-8

sid	8u432-b06-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

openjdk-6

lucid	Fixed 6b34-1.13.6-1ubuntu0.10.04.1 released
precise	Fixed 6b34-1.13.6-1ubuntu0.12.04.1 released
trusty	Fixed 6b34-1.13.6-1ubuntu0.14.04.1 released
utopic	Fixed 6b34-1.13.6-1ubuntu0.14.10.1 released

openjdk-7

lucid	dne
precise	Fixed 7u75-2.5.4-1~precise1 released
trusty	Fixed 7u75-2.5.4-1~trusty1 released
utopic	Fixed 7u75-2.5.4-1~utopic1 released

openjdk-8

lucid	dne
precise	dne
trusty	dne
utopic	not-affected

References

http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html

http://marc.info/?l=bugtraq&m=142496355704097&w=2

http://marc.info/?l=bugtraq&m=142607790919348&w=2

http://rhn.redhat.com/errata/RHSA-2015-0068.html

http://rhn.redhat.com/errata/RHSA-2015-0079.html

http://rhn.redhat.com/errata/RHSA-2015-0080.html

http://rhn.redhat.com/errata/RHSA-2015-0085.html

http://rhn.redhat.com/errata/RHSA-2015-0086.html

http://rhn.redhat.com/errata/RHSA-2015-0136.html

http://rhn.redhat.com/errata/RHSA-2015-0264.html

http://www.debian.org/security/2015/dsa-3144

http://www.debian.org/security/2015/dsa-3147

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

http://www.securityfocus.com/bid/72142

http://www.securitytracker.com/id/1031580

http://www.ubuntu.com/usn/USN-2486-1

http://www.ubuntu.com/usn/USN-2487-1

http://www.vmware.com/security/advisories/VMSA-2015-0003.html

https://exchange.xforce.ibmcloud.com/vulnerabilities/100143

https://security.gentoo.org/glsa/201507-14

https://security.gentoo.org/glsa/201603-14

https://www-304.ibm.com/support/docview.wss?uid=swg21695474

http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html

http://marc.info/?l=bugtraq&m=142496355704097&w=2

http://marc.info/?l=bugtraq&m=142607790919348&w=2

http://rhn.redhat.com/errata/RHSA-2015-0068.html

http://rhn.redhat.com/errata/RHSA-2015-0079.html

http://rhn.redhat.com/errata/RHSA-2015-0080.html

http://rhn.redhat.com/errata/RHSA-2015-0085.html

http://rhn.redhat.com/errata/RHSA-2015-0086.html

http://rhn.redhat.com/errata/RHSA-2015-0136.html

http://rhn.redhat.com/errata/RHSA-2015-0264.html

http://www.debian.org/security/2015/dsa-3144

http://www.debian.org/security/2015/dsa-3147

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

http://www.securityfocus.com/bid/72142

http://www.securitytracker.com/id/1031580

http://www.ubuntu.com/usn/USN-2486-1

http://www.ubuntu.com/usn/USN-2487-1

http://www.vmware.com/security/advisories/VMSA-2015-0003.html

https://exchange.xforce.ibmcloud.com/vulnerabilities/100143

https://security.gentoo.org/glsa/201507-14

https://security.gentoo.org/glsa/201603-14

https://www-304.ibm.com/support/docview.wss?uid=swg21695474