CVE-2015-4908

10 documents7 sources

Severity

5.0MEDIUM

EPSS

0.4%

top 39.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Javafx Oracle JDK Oracle JRE

Timeline

PublishedOct 22

Latest updateMay 13

Description

Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2.2.85 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2015-4906 and CVE-2015-4916.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages4 packages

▶NVDoracle/javafx2.2.85

▶NVDoracle/jdk1.8.0

▶NVDoracle/jre1.8.0

▶Debianopenjfx< 8u91-b14-1+3

🔴Vulnerability Details

GHSA

GHSA-gx8x-vx3v-4fcg: Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2↗2022-05-13

▶

OSV

CVE-2015-4908: Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2↗2015-10-22

▶

CVEList

CVE-2015-4908: Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2↗2015-10-21

▶

📋Vendor Advisories

Red Hat

JDK: unspecified vulnerability fixed in 8u65 (JavaFX)↗2015-10-20

▶

Red Hat

JDK: unspecified vulnerability fixed in 8u65 (JavaFX)↗2015-10-20

▶

Red Hat

JDK: unspecified vulnerability fixed in 8u65 (JavaFX)↗2015-10-20

▶

Debian

CVE-2015-4908: openjfx - Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2.2.85 allows remote...↗2015

▶

💬Community

Bugzilla

CVE-2015-4908 Oracle JDK: unspecified vulnerability fixed in 8u65 (JavaFX)↗2015-10-21

▶

Bugzilla

CVE-2015-1827 ipa: memory corruption when using get_user_grouplist()↗2015-03-24

▶