Vulnerability Description
Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Canonical | Ubuntu Linux | 10.04 |
| Novell | Suse Linux Enterprise Desktop | 12.0 |
| Novell | Suse Linux Enterprise Server | 12.0 |
| Opensuse | Opensuse | 13.2 |
| Oracle | Jdk | 1.6.0 |
| Oracle | Jre | 1.6.0 |
References
- http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html
- http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html
- http://marc.info/?l=bugtraq&m=142496355704097&w=2
- http://marc.info/?l=bugtraq&m=142607790919348&w=2
- http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/72159
- http://www.securitytracker.com/id/1031580
- http://www.ubuntu.com/usn/USN-2486-1
- http://www.ubuntu.com/usn/USN-2487-1
- http://www.vmware.com/security/advisories/VMSA-2015-0003.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100149
- https://security.gentoo.org/glsa/201507-14
- https://security.gentoo.org/glsa/201603-14
FAQ
What is CVE-2015-0400?
CVE-2015-0400 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.
How severe is CVE-2015-0400?
CVE-2015-0400 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0400?
Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Novell Suse Linux Enterprise Desktop, Novell Suse Linux Enterprise Server, Opensuse Opensuse, Oracle Jdk.