CVE-2015-4860 — Oracle JDK vulnerability
17 documents9 sources
Severity
10.0CRITICALNVD
OSV5.0
EPSS
8.2%
top 7.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 21
Latest updateMay 13
Description
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4883.
CVSS vector
AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0
Affected Packages2 packages
Patches
🔴Vulnerability Details
7GHSA▶
GHSA-vw5f-vf9g-7xvr: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integ↗2022-05-13
GHSA▶
GHSA-x59v-wff7-pprc: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integ↗2022-05-13
OSV▶
CVE-2015-4860: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integ↗2015-10-21
CVEList▶
CVE-2015-4860: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integ↗2015-10-21
📋Vendor Advisories
7Debian▶
CVE-2015-4860: openjdk-8 - Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE E...↗2015
💬Community
1Bugzilla
▶