Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveOracleCVE-2015-4749
HistoryJul 16, 2015 - 11:00 a.m.

CVE-2015-4749

2015-07-1611:00:43
oracle
web.nvd.nist.gov
207
oracle
java se
vulnerability
jndi
remote attackers
nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

4.9

Confidence

Low

EPSS

0.039

Percentile

92.0%

JSON

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect availability via vectors related to JNDI.

Affected configurations

Nvd
Node
oraclejrockitMatchr28.3.6
Node
oraclejdkMatch1.6.0update95
OR
oraclejdkMatch1.7.0update75
OR
oraclejdkMatch1.7.0update80
OR
oraclejdkMatch1.8.0update_33
OR
oraclejdkMatch1.8.0update45
OR
oraclejreMatch1.6.0update_95
OR
oraclejreMatch1.7.0update_75
OR
oraclejreMatch1.7.0update_80
OR
oraclejreMatch1.8.0update_33
OR
oraclejreMatch1.8.0update_45
VendorProductVersionCPE
oraclejrockitr28.3.6cpe:/a:oracle:jrockit:r28.3.6:::

References

Related

prion 1
nvd 1
ubuntucve 1
cvelist 1
debiancve 1
ibm 46
f5 1
nessus 47
openvas 40
osv 2
amazon 3
oraclelinux 4
redhat 12
centos 4
mageia 2
ubuntu 2
debian 3
archlinux 1
veracode 16
suse 9
aix 1
kaspersky 1
prion
prion
Buffer overflow
2015-07-16 11:00:00
nvd
nvd
CVE-2015-4749
2015-07-16 11:00:43
ubuntucve
ubuntucve
CVE-2015-4749
2015-07-16 00:00:00
cvelist
cvelist
CVE-2015-4749
2015-07-16 10:00:00
debiancve
debiancve
CVE-2015-4749
2015-07-16 11:00:43
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Cognos Metrics Manager (CVE-2015-2625 , CVE-2015-4748, CVE-2015-4749)
2018-06-15 23:13:58
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Emptoris Strategic Supply Management, and IBM Emptoris Services Procurement.
2018-06-16 19:48:52
Security Bulletin: A security vulnerability has been identified in IBM Websphere Application Server shipped with IBM Security Key Lifecycle Manager ( CVE-2015-2613, CVE-2015-2601, CVE-2015-4749, CVE-2015-2625, CVE-2015-1931).
2018-06-16 21:26:07
f5
f5
K84947349 : OpenJDK vulnerabilities CVE-2015-2601, CVE-2015-2621, CVE-2015-2632, CVE-2015-4748, and CVE-2015-4749
2017-09-15 00:00:00
nessus
nessus
Oracle JRockit R28 < R28.3.7 Multiple Vulnerabilities (July 2015 CPU) (Bar Mitzvah) (Logjam)
2015-07-16 00:00:00
Juniper Junos Space < 15.1R2 Multiple Vulnerabilities (JSA10727) (Bar Mitzvah) (Logjam)
2016-06-23 00:00:00
Oracle Linux 5 / 6 / 7 : java-1.6.0-openjdk (ELSA-2015-1526) (Bar Mitzvah) (Logjam)
2015-07-31 00:00:00
openvas
openvas
Juniper Networks Junos Space Multiple Vulnerabilities (JSA10727)
2016-04-18 00:00:00
CentOS Update for java CESA-2015:1229 centos6
2015-07-16 00:00:00
RedHat Update for java-1.7.0-openjdk RHSA-2015:1230-01
2015-07-16 00:00:00
osv
osv
openjdk-6 - security update
2015-08-28 00:00:00
openjdk-7 - security update
2015-07-25 00:00:00
amazon
amazon
Important: java-1.6.0-openjdk
2015-08-24 22:26:00
Critical: java-1.7.0-openjdk
2015-07-22 10:00:00
Important: java-1.8.0-openjdk
2015-07-22 10:00:00
oraclelinux
oraclelinux
java-1.6.0-openjdk security update
2015-07-31 00:00:00
java-1.7.0-openjdk security update
2015-07-15 00:00:00
java-1.7.0-openjdk security update
2015-07-16 00:00:00
redhat
redhat
(RHSA-2015:1229) Critical: java-1.7.0-openjdk security update
2015-07-15 00:00:00
(RHSA-2015:1230) Important: java-1.7.0-openjdk security update
2015-07-15 00:00:00
(RHSA-2015:1526) Important: java-1.6.0-openjdk security update
2015-07-30 00:00:00
centos
centos
java security update
2015-07-30 23:24:14
java security update
2015-07-15 15:08:01
java security update
2015-07-15 15:39:22
mageia
mageia
Updated java-1.7.0-openjdk package fixes security vulnerabilities
2015-07-23 12:39:14
Updated java-1.8.0-openjdk package fixes security vulnerabilities
2015-07-27 12:53:07
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2015-07-30 00:00:00
OpenJDK 6 vulnerabilities
2015-08-06 00:00:00
debian
debian
[SECURITY] [DLA 303-1] openjdk-6 security update
2015-08-28 08:31:00
[SECURITY] [DSA 3339-1] openjdk-6 security update
2015-08-19 20:19:22
[SECURITY] [DSA 3316-1] openjdk-7 security update
2015-07-25 10:13:47
archlinux
archlinux
jre7-openjdk: multiple issues
2015-07-22 00:00:00
veracode
veracode
Sandbox Restrictions Bypass
2019-05-02 05:41:17
Sandbox Restrictions Bypass
2019-05-02 05:41:17
Sandbox Restrictions Bypass
2019-05-02 05:41:17
suse
suse
Security update for java-1_6_0-ibm (important)
2015-09-08 13:10:01
Security update for java-1_6_0-ibm (important)
2015-08-05 11:08:49
Security update for java-1_7_1-ibm (important)
2015-07-31 16:08:49
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2015-07-31 13:04:25
kaspersky
kaspersky
KLA10629 Multiple vulnerabilities in Oracle Java SE
2015-07-14 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

4.9

Confidence

Low

EPSS

0.039

Percentile

92.0%

JSON
Related for CVE-2015-4749
prion1nvd1ubuntucve1cvelist1debiancve1ibm46f51nessus47openvas40osv2amazon3oraclelinux4redhat12centos4mageia2ubuntu2debian3archlinux1veracode16suse9aix1kaspersky1