CVE-2015-2590

Published: Jul 16, 2015Modified: Apr 21, 2026CISA KEV

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2015-4732.

Affected (71)

Products: Oracle: Jdk, Jre · Canonical: Ubuntu Linux · Debian: Debian Linux · +3 more

Show all products

2 products

1 product

1 product

1 product

3 products

Linux Enterprise Debuginfo

Linux Enterprise Desktop

Linux Enterprise Server

Redhat

13 products

Enterprise Linux Desktop

Enterprise Linux Eus

Enterprise Linux For Ibm Z Systems

Enterprise Linux For Ibm Z Systems Eus

Enterprise Linux For Power Big Endian

Enterprise Linux For Power Big Endian Eus

Enterprise Linux For Power Little Endian

Enterprise Linux For Power Little Endian Eus

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Tus

Enterprise Linux Workstation

Satellite

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
Oracle Jdk	Version 1.6.0 update95
Oracle Jdk	Version 1.7.0 update75
Oracle Jdk	Version 1.7.0 update80
Oracle Jdk	Version 1.8.0 update33
Oracle Jdk	Version 1.8.0 update45
Oracle Jre	Version 1.6.0 update95
Oracle Jre	Version 1.7.0 update75
Oracle Jre	Version 1.7.0 update80
Oracle Jre	Version 1.8.0 update33
Oracle Jre	Version 1.8.0 update45

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 15.04

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 7.0
Debian Debian Linux	Version 8.0

Configuration D

8 vulnerable

Vulnerable Software	Affected Versions
Opensuse Opensuse	Version 13.1
Opensuse Opensuse	Version 13.2
Suse Linux Enterprise Debuginfo	Version 11 sp3
Suse Linux Enterprise Debuginfo	Version 11 sp4
Suse Linux Enterprise Desktop	Version 11 sp3
Suse Linux Enterprise Desktop	Version 11 sp4
Suse Linux Enterprise Desktop	Version 12
Suse Linux Enterprise Server	Version 12

Configuration E

48 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Desktop	Version 5.0
Redhat Enterprise Linux Desktop	Version 6.0
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Eus	Version 6.6
Redhat Enterprise Linux Eus	Version 6.7
Redhat Enterprise Linux Eus	Version 7.1
Redhat Enterprise Linux Eus	Version 7.2
Redhat Enterprise Linux Eus	Version 7.3
Redhat Enterprise Linux Eus	Version 7.4
Redhat Enterprise Linux Eus	Version 7.5
Redhat Enterprise Linux For Ibm Z Systems	Version 6.0_s390x
Redhat Enterprise Linux For Ibm Z Systems Eus	Version 6.7_s390x
Redhat Enterprise Linux For Ibm Z Systems Eus	Version 7.1_s390x
Redhat Enterprise Linux For Ibm Z Systems Eus	Version 7.2_s390x
Redhat Enterprise Linux For Ibm Z Systems Eus	Version 7.3_s390x
Redhat Enterprise Linux For Ibm Z Systems Eus	Version 7.4_s390x
Redhat Enterprise Linux For Ibm Z Systems Eus	Version 7.5_s390x
Redhat Enterprise Linux For Power Big Endian	Version 6.0_ppc64
Redhat Enterprise Linux For Power Big Endian	Version 7.0_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	Version 6.7_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	Version 7.1_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	Version 7.2_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	Version 7.3_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	Version 7.4_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	Version 7.5_ppc64
Redhat Enterprise Linux For Power Little Endian	Version 7.0_ppc64le
Redhat Enterprise Linux For Power Little Endian Eus	Version 7.1_ppc64le
Redhat Enterprise Linux For Power Little Endian Eus	Version 7.2_ppc64le
Redhat Enterprise Linux For Power Little Endian Eus	Version 7.3_ppc64le
Redhat Enterprise Linux For Power Little Endian Eus	Version 7.4_ppc64le
Redhat Enterprise Linux For Power Little Endian Eus	Version 7.5_ppc64le
Redhat Enterprise Linux Server	Version 5.0
Redhat Enterprise Linux Server	Version 6.0
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Server Aus	Version 6.6
Redhat Enterprise Linux Server Aus	Version 7.3
Redhat Enterprise Linux Server Aus	Version 7.4
Redhat Enterprise Linux Server Aus	Version 7.6
Redhat Enterprise Linux Server Aus	Version 7.7
Redhat Enterprise Linux Server Tus	Version 6.6
Redhat Enterprise Linux Server Tus	Version 7.3
Redhat Enterprise Linux Server Tus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 7.7
Redhat Enterprise Linux Workstation	Version 5.0
Redhat Enterprise Linux Workstation	Version 6.0
Redhat Enterprise Linux Workstation	Version 7.0
Redhat Satellite	Version 5.6
Redhat Satellite	Version 5.7

References (51)

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html

Source: secalert_us@oracle.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html

Source: secalert_us@oracle.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html

Source: secalert_us@oracle.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html

Source: secalert_us@oracle.com

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1228.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1229.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1230.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1241.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1242.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1243.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1485.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1486.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1488.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1526.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1544.html

Source: secalert_us@oracle.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-1604.html

Source: secalert_us@oracle.com

Third Party Advisory

http://www.debian.org/security/2015/dsa-3316

Source: secalert_us@oracle.com

Mailing ListThird Party Advisory

http://www.debian.org/security/2015/dsa-3339

Source: secalert_us@oracle.com

Mailing ListThird Party Advisory

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Source: secalert_us@oracle.com

PatchVendor Advisory

http://www.securityfocus.com/bid/75818

Source: secalert_us@oracle.com

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1032910

Source: secalert_us@oracle.com

Broken LinkThird Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/USN-2696-1

Source: secalert_us@oracle.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2706-1

Source: secalert_us@oracle.com

Third Party Advisory

https://security.gentoo.org/glsa/201603-11

Source: secalert_us@oracle.com

Third Party Advisory

https://security.gentoo.org/glsa/201603-14

Source: secalert_us@oracle.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html