PT-2015-1475 · Oracle+5 · Java Se Embedded+7
Published
2015-07-15
·
Updated
2025-03-14
·
CVE-2015-2590
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Java SE versions 6u95, 7u80, and 8u45
Java SE Embedded versions 7u75 and 8u33
Description
The issue is related to errors in the code of the Java Platform, allowing a remote attacker to compromise the confidentiality, integrity, and availability of information. The vulnerability can be exploited via unknown vectors related to Libraries, affecting the security of the system. It is estimated that a significant number of devices worldwide may be potentially affected.
Recommendations
For Java SE versions 6u95, 7u80, and 8u45, update to a version that contains a fix for this issue.
For Java SE Embedded versions 7u75 and 8u33, update to a version that contains a fix for this issue.
As a temporary workaround, consider restricting access to the Libraries component to minimize the risk of exploitation.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Centos
Ibm Aix
Java Platform
Java Se
Java Se Embedded
Red Hat
Suse
Ubuntu