Vulnerability Description
Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Jdk | 1.7.0 |
| Oracle | Jre | 1.7.0 |
References
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html
- http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/75856
- http://www.securitytracker.com/id/1032910
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html
- http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/75856
- http://www.securitytracker.com/id/1032910
FAQ
What is CVE-2015-2597?
CVE-2015-2597 is a vulnerability with a CVSS score of 7.2 (HIGH). Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install.
How severe is CVE-2015-2597?
CVE-2015-2597 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-2597?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Jdk, Oracle Jre.