Information disclosure in Ibm Java_2_sdk

CVE-2015-5006

IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3 FP20, 7 before SR9 FP20, 6 R1 before SR8 FP15, and 6 before SR16 FP15 allow physically proximate attackers to obtain sensitive information by re…

Vulnerability class: Information Disclosure

EPSS: 0.001 (22.6th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

Public proof-of-concept exploits

References

  • SUSE-SU-2015:2182 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
  • SUSE-SU-2015:2192 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
  • IV78316 (vendor-advisory, x_refsource_AIXAPAR, Vendor Advisory)
  • 1034214 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
  • RHSA-2015:2507 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
  • RHSA-2016:1430 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
  • RHSA-2015:2506 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
  • RHSA-2015:2509 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
  • SUSE-SU-2015:2166 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
  • SUSE-SU-2015:2216 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)

Frequently asked questions

What is CVE-2015-5006?
CVE-2015-5006 is a vulnerability in Ibm Java_2_sdk, classified under Information Disclosure. Published 2015-12-07.
Is CVE-2015-5006 known to be exploited?
1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.