← Retour aux CVEs
CVE-2015-1931
MEDIUM5.5
Description
IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR1 FP10, 7 R1 before SR3 FP10, 7 before SR9 FP10, 6 R1 before SR8 FP7, 6 before SR16 FP7, and 5.0 before SR16 FP13 stores plaintext information in memory dumps, which allows local users to obtain sensitive information by reading a file.
Details CVE
Score CVSS v3.15.5
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vecteur d'attaqueLOCAL
ComplexiteLOW
Privileges requisLOW
Interaction utilisateurNONE
Publie9/29/2022
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
ibm:java_sdkredhat:enterprise_linux_desktopredhat:enterprise_linux_eusredhat:enterprise_linux_serverredhat:enterprise_linux_workstationredhat:satellitesuse:linux_enterprise_serversuse:linux_enterprise_software_development_kit
Faiblesses (CWE)
CWE-312
References
http://rhn.redhat.com/errata/RHSA-2015-1485.html(psirt@us.ibm.com)
http://rhn.redhat.com/errata/RHSA-2015-1486.html(psirt@us.ibm.com)
http://rhn.redhat.com/errata/RHSA-2015-1488.html(psirt@us.ibm.com)
http://rhn.redhat.com/errata/RHSA-2015-1544.html(psirt@us.ibm.com)
http://rhn.redhat.com/errata/RHSA-2015-1604.html(psirt@us.ibm.com)
http://www-01.ibm.com/support/docview.wss?uid=swg1IV75182(psirt@us.ibm.com)
http://www-01.ibm.com/support/docview.wss?uid=swg21962302(psirt@us.ibm.com)
http://www.securityfocus.com/bid/75985(psirt@us.ibm.com)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00051.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00014.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1485.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1486.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1488.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1544.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1604.html(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1IV75182(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21962302(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/75985(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.