CVE-2015-2597

Description

Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install.

Risk Information

Base Score

8.4

MODERATE

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.12

Associated Vulnerability

Vulnerability	OS Platform
Multiple vulnerabilities affected in Java jdk (x64) 8.0(x64)	Windows
Multiple vulnerabilities affected in Java jdk 8.0	Windows
Multiple vulnerabilities affected in Java jre (x64) 8.0(x64)	Windows
Multiple vulnerabilities affected in Java jre 8.0	Windows
Vulnerabilities CVE-2015-2597 are affected in Java SE Development Kit 7 (x64) 7.2	Windows
Vulnerabilities CVE-2015-2597 are affected in Java SE Development Kit 7 (x86) 7.2	Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE

Patch ID	Patch Description
PATCH-333701	Java SE Development Kit 8 Update 391 (64-bit) (8.0.3910.13) (JDK) (Manual Upload Required)
PATCH-333702	Java SE Development Kit 8 Update 391 (32-bit) (8.0.3910.13) (JDK) (Manual Upload Required)
PATCH-349782	Java Runtime Environment 1.8 (x64) (8.0.4610.11) (Manual Upload Required)
PATCH-306097	Update for Java Runtime Environment (1.8.141)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234