Unspecified Vulnerability in Oracle Java SE and JRockit Products
CVE-2015-2601

Currently unrated

Key Information:

Vendor: Oracle
Status: Jrockit
Vendor: CVE Published:; 16 July 2015

What is CVE-2015-2601?

An unspecified vulnerability exists in Oracle Java SE and JRockit that allows remote attackers to potentially compromise the confidentiality of affected systems through manipulation of Java Cryptography Extension (JCE) vectors. This vulnerability impacts several versions of Java SE and may expose sensitive information to unauthorized users. Organizations using vulnerable versions should prioritize updating their software to mitigate potential risks.

References

http://rhn.redhat.com/errata/RHSA-2015-1243.html

vendor-advisoryx_refsource_REDHAT

http://www.oracle.com/technetwork/topics/security/cpujul2...

x_refsource_CONFIRM

http://rhn.redhat.com/errata/RHSA-2015-1229.html

vendor-advisoryx_refsource_REDHAT

Timeline

Vulnerability published
Jul 16, 2015
Vulnerability Reserved
Mar 20, 2015