2.1

CVE-2015-5006

IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3 FP20, 7 before SR9 FP20, 6 R1 before SR8 FP15, and 6 before SR16 FP15 allow physically proximate attackers to obtain sensitive information by reading the Kerberos Credential Cache.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmJava 2 Sdk SwEditiontechnology Version >= 5.0.0.0 <= 5.0.16.13
IbmJava Sdk SwEditiontechnology Version >= 6.0.0.0 < 6.0.16.15
IbmJava Sdk SwEditiontechnology Version >= 6.1.0.0. < 6.1.8.15
IbmJava Sdk SwEditiontechnology Version >= 7.0.0.0 < 7.0.9.20
IbmJava Sdk SwEditiontechnology Version >= 7.1.0.0 < 7.1.3.20
IbmJava Sdk SwEditiontechnology Version >= 8.0.0.0 < 8.0.2.0
RedhatSatellite Version5.6
RedhatSatellite Version5.7
SuseLinux Enterprise Server Version11 Updatesp2 SwEditionltss
SuseLinux Enterprise Server Version11 Updatesp3
SuseLinux Enterprise Server Version11 Updatesp3 SwPlatformvmware
SuseLinux Enterprise Server Version11 Updatesp4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.48% 0.377
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00001.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00003.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00006.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00014.html
Third Party Advisory
Mailing List
http://rhn.redhat.com/errata/RHSA-2015-2506.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-2507.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-2508.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-2509.html
Third Party Advisory
https://access.redhat.com/errata/RHSA-2016:1430
Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IV78316
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21969225
Vendor Advisory
http://www.securityfocus.com/bid/77645
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1034214
Third Party Advisory
VDB Entry