CVE-2015-4734
Description
Unspecified vulnerability in Oracle Java SE 6u101, 7u85 and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to JGSS.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
3.08
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Java SE Development Kit 1.8.0 | Windows |
| Vulnerabilities CVE-2015-5006,CVE-2015-4872,CVE-2015-4734 are fixed in IBM WebSphere 8.5.5.9 | Windows |
| Multiple vulnerabilities are fixed in IBM WebSphere 8.0.0.12 | Windows |
| Multiple vulnerabilities are fixed in IBM WebSphere 6.1.0.47 | Windows |
| Multiple vulnerabilities are fixed in IBM WebSphere 7.0.0.41 | Windows |
| Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.0 | Windows |
| Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.5 | Windows |
| Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.6 | Windows |
| Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.7 | Windows |
| Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.8 | Windows |
| Open Source Java implementation (USN-2784-1) icedtea-7-jre-jamvm_7u85-2.6.1-5ubuntu0.15.10.1_i386.deb | Linux |
| Open Source Java implementation (USN-2784-1) icedtea-7-jre-jamvm_7u85-2.6.1-5ubuntu0.15.10.1_amd64.deb | Linux |
| Open Source Java implementation (USN-2884-1) icedtea-7-jre-jamvm_7u85-2.6.1-5ubuntu0.15.10.1_i386.deb | Linux |
| Open Source Java implementation (USN-2884-1) icedtea-7-jre-jamvm_7u85-2.6.1-5ubuntu0.15.10.1_amd64.deb | Linux |
| SUSE-SU-2016:0113-1(SUSE Linux Enterprise Desktop 12-SP1 ) python-requests-2.8.1-6.9.1.noarch.rpm | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-333702 | Java SE Development Kit 8 Update 391 (32-bit) (8.0.3910.13) (JDK) (Manual Upload Required) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234