CVE-2015-2623

Опубликовано: 16 июл. 2015

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2, and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0, allows remote attackers to affect integrity via unknown vectors related to Java Server Faces.

Ссылки

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
Patch
Vendor Advisory
http://www.securitytracker.com/id/1032953
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
Patch
Vendor Advisory
http://www.securitytracker.com/id/1032953

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:oracle:fusion_middleware:3.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:fusion_middleware:3.1.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:fusion_middleware:10.3.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:fusion_middleware:12.1.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:fusion_middleware:12.1.2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:fusion_middleware:12.1.3.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 47%

0.00237

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2015-2623

debian

больше 10 лет назад

Unspecified vulnerability in the Oracle GlassFish Server component in ...

GHSA-4p26-xwh2-224v

github

больше 3 лет назад

BDU:2015-11184

fstec