CVSS: 10.0EPSS: 2%CPEs: 8EXPL: 0CVE-2015-4860 – OpenJDK: incorrect access control context used in DGCImpl (RMI, 8080688)
https://notcve.org/view.php?id=CVE-2015-4860
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4883. Vulnerabilidad no especificada en Oracle Java SE 6u101, 7u85 y 8u60 y Java SE Embedded 8u51, permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores relacionados con RMI, una vulnerabilidad diferente a CVE-2015-48... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html •
CVSS: 9.8EPSS: 0%CPEs: 9EXPL: 0CVE-2015-4872 – OpenJDK: incomplete constraints enforcement by AlgorithmChecker (Security, 8131291)
https://notcve.org/view.php?id=CVE-2015-4872
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect integrity via unknown vectors related to Security. Vulnerabilidad no especificada en Oracle Java SE 6u101, 7u85 y 8u60; Java SE Embedded 8u51 y JRockit R28.3.7 permite a atacantes remotos afectar a la integridad a través de vectores desconocidos relacionados con Security. The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK ... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-4906 – JDK: unspecified vulnerability fixed in 8u65 (JavaFX)
https://notcve.org/view.php?id=CVE-2015-4906
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2.2.85 allows remote attackers to affect confidentiality via unknown vectors related to JavaFX, a different vulnerability than CVE-2015-4908 and CVE-2015-4916. Vulnerabilidad no especificada en Oracle Java SE 8u60 y JavaFX 2.2.85 permite a atacantes remotos afectar a la confidencialidad a través de vectores desconocidos relacionados con JavaFX, una vulnerabilidad diferente a CVE-2015-4908 y CVE-2015-4916. Oracle Java SE version 8 includes the Oracl... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2015-4903 – OpenJDK: insufficient proxy class checks in RemoteObjectInvocationHandler (RMI, 8076339)
https://notcve.org/view.php?id=CVE-2015-4903
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to RMI. Vulnerabilidad no especificada en Oracle Java SE 6u101, 7u85 y 8u60 y Java SE Embedded 8u51, permite a atacantes remotos afectar a la confidencialidad a través de vectores relacionados con RMI. The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Multiple flaws wer... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2015-4908 – JDK: unspecified vulnerability fixed in 8u65 (JavaFX)
https://notcve.org/view.php?id=CVE-2015-4908
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2.2.85 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2015-4906 and CVE-2015-4916. Vulnerabilidad no especificada en Oracle Java SE 8u60 y JavaFX 2.2.85 permite a atacantes remotos afectar a la confidencialidad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2015-4906 y CVE-2015-4916. Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle ... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html •
CVSS: 9.1EPSS: 3%CPEs: 8EXPL: 0CVE-2015-4882 – OpenJDK: incorrect String object deserialization in IIOPInputStream (CORBA, 8076387)
https://notcve.org/view.php?id=CVE-2015-4882
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect availability via vectors related to CORBA. Vulnerabilidad no especificada en Oracle Java SE 6u101, 7u85 y 8u60 y Java SE Embedded 8u51, permite a atacantes remotos afectar a la disponibilidad a través de vectores relacionados con CORBA. The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Multiple flaws were... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html •
CVSS: 10.0EPSS: 8%CPEs: 8EXPL: 0CVE-2015-4835 – OpenJDK: insufficient permission checks in StubGenerator (CORBA, 8076383)
https://notcve.org/view.php?id=CVE-2015-4835
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2015-4881. Vulnerabilidad no especificada en Oracle Java SE 6u101, 7u85 y 8u60 y Java SE Embedded 8u51, permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores relacionados con CORBA, una vulnerabilidad diferente a CVE-201... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2015-4840 – OpenJDK: OOB access in CMS code (2D, 8086092)
https://notcve.org/view.php?id=CVE-2015-4840
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 7u85 and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via unknown vectors related to 2D. Vulnerabilidad no especificada en Oracle Java SE 7u85 y 8u60 y Java SE Embedded 8u51, permite a atacantes remotos afectar a la confidencialidad a través de vectores desconocidos relacionados con 2D. The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Multiple flaws... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2015-4842 – OpenJDK: leak of user.dir location (JAXP, 8078427)
https://notcve.org/view.php?id=CVE-2015-4842
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to JAXP. Vulnerabilidad no especificada en Oracle Java SE 6u101, 7u85 y 8u60 y Java SE Embedded 8u51, permite a atacantes remotos afectar a la confidencialidad a través de vectores relacionados con JAXP. The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Multiple flaws w... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00000.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 0CVE-2015-4901 – JDK: unspecified vulnerability fixed in 8u65 (JavaFX)
https://notcve.org/view.php?id=CVE-2015-4901
21 Oct 2015 — Unspecified vulnerability in Oracle Java SE 8u60 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX. Vulnerabilidad no especificada en Oracle Java SE 8u60 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con JavaFX. Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vul... • http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html •