Remote Availability Impact in Oracle Java SE Products by Oracle
CVE-2015-4803

Currently unrated

Key Information:

Vendor: Oracle
Status: Jrockit
Vendor: CVE Published:; 21 October 2015

Summary

An unspecified vulnerability in Oracle's Java SE versions 6u101, 7u85, and 8u60, along with Java SE Embedded and JRockit, allows remote attackers to potentially disrupt availability. The exposure arises from vectors related to JAXP. It is essential for users to apply security updates from Oracle to mitigate risks associated with this vulnerability.

References

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

http://www.ubuntu.com/usn/USN-2784-1

vendor-advisoryx_refsource_UBUNTU

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 21, 2015
Vulnerability Reserved
Jun 24, 2015