PT-2015-1558 · Oracle+1 · Java Se+2

Published

2015-07-16

Updated

2024-06-15

CVE-2015-2597

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Java SE versions 7u80 and 8u45

Description The issue is related to errors in the code of the Java Platform, which can be exploited by a local attacker to compromise the integrity, availability, and confidentiality of data by modifying the product installation process. The vulnerability allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install.

Recommendations For Java SE version 7u80, update to a version that contains a fix for this issue. For Java SE version 8u45, update to a version that contains a fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-17

Related Identifiers

BDU:2015-10866

CVE-2015-2597

OPENSUSE-SU-2015_1288-1

OPENSUSE-SU-2015_1289-1

OPENSUSE-SU-2024:10197-1

SUSE-SU-2015:1319-1

SUSE-SU-2015:1320-1

Affected Products

Java Platform

Java Se

Suse

PT-2015-1558 · Oracle+1 · Java Se+2

CVE-2015-2597

Weakness Enumeration

Related Identifiers

Affected Products

References · 150