Unspecified Vulnerability in Oracle Java SE and JRockit Products
CVE-2015-4893

Currently unrated

Key Information:

Vendor: Oracle
Status: Jrockit
Vendor: CVE Published:; 21 October 2015

Summary

This vulnerability in Oracle Java SE and JRockit allows remote attackers to potentially affect the availability of the application through unspecified vectors related to JAXP. The flaw impacts multiple versions of Java SE, including older releases and Java SE Embedded, as well as JRockit R28.3.7, necessitating immediate attention to safeguard systems using these products.

References

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

http://www.ubuntu.com/usn/USN-2784-1

vendor-advisoryx_refsource_UBUNTU

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 21, 2015
Vulnerability Reserved
Jun 24, 2015