CVE-2006-0615 — JDK vulnerability

3 documents3 sources

Severity

4.0MEDIUMNVD

EPSS

7.2%

top 8.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN JDK SUN JRE SUN SDK

Timeline

PublishedFeb 9

Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 4 and earlier, SDK and JRE 1.4.x through 1.4.2_09 allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "second and third issues."

CVSS vector

AV:N/AC:H/C:P/I:P/A:NExploitability: 4.9 | Impact: 4.9

Affected Packages3 packages

▶NVDsun/jdk1.5.0

▶NVDsun/jre11 versions+10

▶NVDsun/sdk10 versions+9

Patches

Patch: secunia.com ↗Patch: sunsolve.sun.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-gp7h-5ghm-hc8r: Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5↗2022-05-01

▶

CVEList

CVE-2006-0615: Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5↗2006-02-09

▶