CRITICALπŸ‡΅πŸ‡± Wersja polska

CVE-2015-5041

CVSS 9.1v3.0pub. 2016-06-06upd. 2026-05-06

The J9 JVM in IBM SDK, Java Technology Edition 6 before SR16 FP20, 6 R1 before SR8 FP20, 7 before SR9 FP30, and 7 R1 before SR3 FP30 allows remote attackers to obtain sensitive information or inject data by invoking non-public interface methods.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
  • IBM Java Sdk

    APP
    Ibm
    6.1.0.0 – 6.1.8.20 (bez)7.0.0.0 – 7.0.9.30 (bez)7.1.0.0 – 7.1.3.30 (bez)6.0.0.0 – 6.0.16.20 (bez)
  • IBM Websphere Application Server

    APP
    Ibm
    ≀ 3.0.9.20
  • Red Hat Satellite

    APP
    Redhat
    5.65.7
  • SUSE Linux Enterprise Server

    OS
    Suse
    1112
  • SUSE Linux Enterprise Software Development Kit

    OS
    Suse
    1112
  • SUSE Linux Enterprise Server

    OS
    Suse
    12
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2016-3427CRITICAL9.8⚠ KEVten sam produkt

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 ...

CVE-2015-7450CRITICAL9.8⚠ KEVten sam produkt

Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and m...

CVE-2015-2590CRITICAL9.8⚠ KEVten sam produkt

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows re...

CVE-2014-7169CRITICAL9.8⚠ KEVten sam produkt

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the...

CVE-2014-6271CRITICAL9.8⚠ KEVten sam produkt

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variab...

CVE-2015-5041 β€” Ibm β€” Java Sdk β€” CRITICAL β€” CVSS 9.1 | CVEbaza.pl