Vulnerability Details : CVE-2015-0421
Unspecified vulnerability in Oracle Java SE 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process.
Products affected by CVE-2015-0421
- cpe:2.3:o:novell:suse_linux_enterprise_desktop:11.0:sp3:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdk:1.8.0:update25:*:*:*:*:*:*
- cpe:2.3:a:oracle:jre:1.8.0:update25:*:*:*:*:*:*
Threat overview for CVE-2015-0421
Top countries where our scanners detected CVE-2015-0421
Top open port discovered on systems with this issue
80
IPs affected by CVE-2015-0421 210
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2015-0421!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2015-0421
0.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 27 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-0421
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.9
|
MEDIUM | AV:L/AC:M/Au:N/C:C/I:C/A:C |
3.4
|
10.0
|
NIST |
References for CVE-2015-0421
-
https://security.gentoo.org/glsa/201507-14
Oracle JRE/JDK: Multiple vulnerabilities (GLSA 201507-14) — Gentoo security
-
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Oracle Critical Patch Update - January 2015Patch;Vendor Advisory
-
http://www.securitytracker.com/id/1031580
Oracle Java Bugs Let Local and Remote Users Gain Elevated Privileges and Remote Users Partially Access and Modify Data - SecurityTracker
-
http://rhn.redhat.com/errata/RHSA-2015-0080.html
RHSA-2015:0080 - Security Advisory - Red Hat Customer Portal
-
http://www.securityfocus.com/bid/72150
Oracle Java SE CVE-2015-0421 Local Java SE Vulnerability
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/100146
Oracle Java SE Install unspecified CVE-2015-0421 Vulnerability Report
-
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html
[security-announce] SUSE-SU-2015:0336-1: important: Security update for
Jump to