CVE-2015-0400Oracle JDK vulnerability

10 documents8 sources
Severity
5.0MEDIUMNVD
EPSS
1.5%
top 18.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Canonical Ubuntu LinuxNovell Suse Linux Enterprise DesktopNovell Suse Linux Enterprise Server+3 more
Timeline
PublishedJan 21
Latest updateMay 13

Description

Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages5 packages

NVDoracle/jdk1.6.0, 1.7.0, 1.8.0+2
NVDoracle/jre1.6.0, 1.7.0, 1.8.0+2

Also affects: Ubuntu Linux 10.04, 12.04, 14.04, 14.10

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

4
GHSA
GHSA-2hp8-653v-px8f: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Libr2022-05-13
OSV
openjdk-7 vulnerabilities2015-01-28
CVEList
CVE-2015-0400: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Libr2015-01-21
OSV
CVE-2015-0400: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Libr2015-01-21

📋Vendor Advisories

4
Ubuntu
OpenJDK 7 vulnerabilities2015-01-28
Ubuntu
OpenJDK 6 vulnerabilities2015-01-27
Red Hat
OpenJDK: NTLM authentication data disclosure via redirect to proxy (Libraries, 8048035)2015-01-20
Debian
CVE-2015-0400: openjdk-8 - Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote a...2015

💬Community

1
Bugzilla
CVE-2015-0400 OpenJDK: NTLM authentication data disclosure via redirect to proxy (Libraries, 8048035)2015-01-16
CVE-2015-0400 — Oracle JDK vulnerability | cvebase