CVE-2015-0407 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:P/I:N/A:N
oracle	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 85%

Vendor	Product	Version
canonical	ubuntu_linux	10.04
canonical	ubuntu_linux	12.04
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	14.10
debian	debian_linux	7.0
debian	debian_linux	8.0
redhat	enterprise_linux	6.0
redhat	enterprise_linux	7.0
oracle	jdk	1.5.0
oracle	jdk	1.6.0
oracle	jdk	1.7.0
oracle	jdk	1.8.0
oracle	jre	1.5.0
oracle	jre	1.6.0
oracle	jre	1.7.0
oracle	jre	1.8.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

openjdk-8

sid	8u432-b06-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

openjdk-6

utopic	Fixed 6b34-1.13.6-1ubuntu0.14.10.1 released
trusty	Fixed 6b34-1.13.6-1ubuntu0.14.04.1 released
precise	Fixed 6b34-1.13.6-1ubuntu0.12.04.1 released
lucid	Fixed 6b34-1.13.6-1ubuntu0.10.04.1 released

openjdk-7

utopic	Fixed 7u75-2.5.4-1~utopic1 released
trusty	Fixed 7u75-2.5.4-1~trusty1 released
precise	Fixed 7u75-2.5.4-1~precise1 released
lucid	dne

openjdk-8

utopic	not-affected
trusty	dne
precise	dne
lucid	dne

References

http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html

http://marc.info/?l=bugtraq&m=142496355704097&w=2

http://marc.info/?l=bugtraq&m=142607790919348&w=2

http://rhn.redhat.com/errata/RHSA-2015-0068.html

http://rhn.redhat.com/errata/RHSA-2015-0079.html

http://rhn.redhat.com/errata/RHSA-2015-0080.html

http://rhn.redhat.com/errata/RHSA-2015-0085.html

http://rhn.redhat.com/errata/RHSA-2015-0086.html

http://rhn.redhat.com/errata/RHSA-2015-0136.html

http://rhn.redhat.com/errata/RHSA-2015-0264.html

http://www.debian.org/security/2015/dsa-3144

http://www.debian.org/security/2015/dsa-3147

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

http://www.securityfocus.com/bid/72162

http://www.securitytracker.com/id/1031580

http://www.ubuntu.com/usn/USN-2486-1

http://www.ubuntu.com/usn/USN-2487-1

http://www.vmware.com/security/advisories/VMSA-2015-0003.html

https://exchange.xforce.ibmcloud.com/vulnerabilities/100150

https://security.gentoo.org/glsa/201507-14

https://security.gentoo.org/glsa/201603-14

https://www-304.ibm.com/support/docview.wss?uid=swg21695474

http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html

http://marc.info/?l=bugtraq&m=142496355704097&w=2

http://marc.info/?l=bugtraq&m=142607790919348&w=2

http://rhn.redhat.com/errata/RHSA-2015-0068.html

http://rhn.redhat.com/errata/RHSA-2015-0079.html

http://rhn.redhat.com/errata/RHSA-2015-0080.html

http://rhn.redhat.com/errata/RHSA-2015-0085.html

http://rhn.redhat.com/errata/RHSA-2015-0086.html

http://rhn.redhat.com/errata/RHSA-2015-0136.html

http://rhn.redhat.com/errata/RHSA-2015-0264.html

http://www.debian.org/security/2015/dsa-3144

http://www.debian.org/security/2015/dsa-3147

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

http://www.securityfocus.com/bid/72162

http://www.securitytracker.com/id/1031580

http://www.ubuntu.com/usn/USN-2486-1

http://www.ubuntu.com/usn/USN-2487-1

http://www.vmware.com/security/advisories/VMSA-2015-0003.html

https://exchange.xforce.ibmcloud.com/vulnerabilities/100150

https://security.gentoo.org/glsa/201507-14

https://security.gentoo.org/glsa/201603-14

https://www-304.ibm.com/support/docview.wss?uid=swg21695474