CVE-2015-1931

IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR1 FP10, 7 R1 before SR3 FP10, 7 before SR9 FP10, 6 R1 before SR8 FP7, 6 before SR16 FP7, and 5.0 before SR16 FP13 stores plaintext information in memory dumps, which allows local users to obtain sensitive information by reading a file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
VendorProductVersion
ibmjava_sdk
5.0.0.0 ≤
𝑥
< 5.0.16.13
ibmjava_sdk
6.0.0.0 ≤
𝑥
< 6.0.16.7
ibmjava_sdk
6.1.0.0 ≤
𝑥
< 6.1.8.7
ibmjava_sdk
7.0.0.0 ≤
𝑥
< 7.0.9.10
ibmjava_sdk
7.1.0.0 ≤
𝑥
< 7.1.3.10
ibmjava_sdk
8.0.0.0 ≤
𝑥
< 8.0.1.10
redhatsatellite
5.6
redhatsatellite
5.7
redhatenterprise_linux_desktop
5.0
redhatenterprise_linux_desktop
6.0
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_eus
6.7
redhatenterprise_linux_eus
7.1
redhatenterprise_linux_eus
7.2
redhatenterprise_linux_eus
7.3
redhatenterprise_linux_eus
7.4
redhatenterprise_linux_eus
7.5
redhatenterprise_linux_server
5.0
redhatenterprise_linux_server
6.0
redhatenterprise_linux_server
7.0
redhatenterprise_linux_workstation
5.0
redhatenterprise_linux_workstation
6.0
redhatenterprise_linux_workstation
7.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00051.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00014.html
http://rhn.redhat.com/errata/RHSA-2015-1485.html
http://rhn.redhat.com/errata/RHSA-2015-1486.html
http://rhn.redhat.com/errata/RHSA-2015-1488.html
http://rhn.redhat.com/errata/RHSA-2015-1544.html
http://rhn.redhat.com/errata/RHSA-2015-1604.html
http://www-01.ibm.com/support/docview.wss?uid=swg1IV75182
http://www-01.ibm.com/support/docview.wss?uid=swg21962302
http://www.securityfocus.com/bid/75985
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00051.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00014.html
http://rhn.redhat.com/errata/RHSA-2015-1485.html
http://rhn.redhat.com/errata/RHSA-2015-1486.html
http://rhn.redhat.com/errata/RHSA-2015-1488.html
http://rhn.redhat.com/errata/RHSA-2015-1544.html
http://rhn.redhat.com/errata/RHSA-2015-1604.html
http://www-01.ibm.com/support/docview.wss?uid=swg1IV75182
http://www-01.ibm.com/support/docview.wss?uid=swg21962302
http://www.securityfocus.com/bid/75985