Home

CVE-2015-5006

Description

IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3 FP20, 7 before SR9 FP20, 6 R1 before SR8 FP15, and 6 before SR16 FP15 allow physically proximate attackers to obtain sensitive information by reading the Kerberos Credential Cache.

Risk Information

Base Score
6.2
MODERATE
Vector
AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.074

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2015-5006,CVE-2015-4872,CVE-2015-4734 are fixed in IBM WebSphere 8.5.5.9Windows
Multiple vulnerabilities are fixed in IBM WebSphere 8.0.0.12Windows
Multiple vulnerabilities are fixed in IBM WebSphere 6.1.0.47Windows
Multiple vulnerabilities are fixed in IBM WebSphere 7.0.0.41Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.0Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.5Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.6Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.7Windows
Multiple Vulnerabilities are affected in IBM Operational Decision Manager 8.8Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234