Vulnerability Change Records for CVE-2015-0410

Change History

CPE Deprecation Remap 9/08/2020 9:0:43 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update_72:*:*:*:*:*:*
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update72:*:*:*:*:*:*

CPE Deprecation Remap 4/22/2019 1:48:01 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:redhat:enterprise_linux:6:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

CVE Modified by Oracle 12/21/2016 9:59:25 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/201507-14 [No Types Assigned]

Modified Analysis 1/22/2015 2:11:08 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:oracle:jre:1.5.0:update_75:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jdk:1.5.0:update_75:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jdk:1.6.0:update_85:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jre:1.6.0:update_85:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jre:1.7.0:update_72:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jdk:1.7.0:update_72:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jre:1.8.0:update_25:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jdk:1.8.0:update_25:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jre:1.7.0:update_71:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jdk:1.7.0:update_71:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jre:1.8.0:update_6:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jdk:1.8.0:update_6:*:*:*:*:*:*
Configuration 2
     OR
          *cpe:2.3:a:oracle:jrockit:r27.8.4:*:*:*:*:*:*:*
          *cpe:2.3:a:oracle:jrockit:r28.3.4:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Added CWE

								
							
							
						
NVD-CWE-noinfo
Added Evaluator Description

								
							
							
						
Per: http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service.
Changed Reference Type
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html No Types Assigned
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html Advisory, Patch

CVE Modified by Source 1/27/2015 9:59:49 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://xforce.iss.net/xforce/xfdb/100151

Initial CVE Analysis 1/22/2015 12:48:51 PM

Action Type Old Value New Value

CVE Modified by Source 3/11/2015 10:1:57 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://marc.info/?l=bugtraq&m=142496355704097&w=2
Added Reference

								
							
							
						
http://www.debian.org/security/2015/dsa-3144
Added Reference

								
							
							
						
http://www.debian.org/security/2015/dsa-3147

CVE Modified by Source 4/14/2015 10:3:01 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html
Added Reference

								
							
							
						
http://seclists.org/fulldisclosure/2015/Apr/5
Added Reference

								
							
							
						
http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded

CVE Modified by Oracle 1/02/2017 9:59:34 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/72165 [No Types Assigned]
Added Reference

								
							
							
						
https://kc.mcafee.com/corporate/index?page=content&id=SB10104 [No Types Assigned]

CVE Modified by Source 6/16/2016 10:2:30 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.vmware.com/security/advisories/VMSA-2015-0003.html
Removed Reference
http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html

								
						
Removed Reference
http://seclists.org/fulldisclosure/2015/Apr/5

								
						
Removed Reference
http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded

								
						

Initial CVE Analysis 1/22/2015 12:47:09 PM

Action Type Old Value New Value

CVE Modified by Source 2/13/2015 10:0:54 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1031580

CVE Modified by Source 3/17/2015 10:4:27 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581
Added Reference

								
							
							
						
http://marc.info/?l=bugtraq&m=142607790919348&w=2
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-0068.html
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-0079.html
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-0080.html
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-0085.html
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-0086.html
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-0136.html
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-0264.html

CVE Modified by Oracle 11/28/2016 2:16:39 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://source.android.com/security/bulletin/2016-11-01.html [No Types Assigned]

CVE Modified by Source 3/16/2015 10:1:43 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html
Added Reference

								
							
							
						
http://www.ubuntu.com/usn/USN-2486-1
Added Reference

								
							
							
						
http://www.ubuntu.com/usn/USN-2487-1

CVE Modified by Source 3/18/2015 10:0:20 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html

CPE Deprecation Remap 9/08/2020 8:30:11 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update_25:*:*:*:*:*:*
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update25:*:*:*:*:*:*

CVE Modified by Oracle 9/07/2017 9:29:43 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://exchange.xforce.ibmcloud.com/vulnerabilities/100151 [No Types Assigned]
Removed Reference
http://xforce.iss.net/xforce/xfdb/100151 [No Types Assigned]

								
						

CVE Modified by Source 3/09/2015 10:0:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www-304.ibm.com/support/docview.wss?uid=swg21695474

CPE Deprecation Remap 9/08/2020 9:0:41 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update_71:*:*:*:*:*:*
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update71:*:*:*:*:*:*

CPE Deprecation Remap 10/30/2018 12:27:36 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:novell:opensuse:13.2:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

CPE Deprecation Remap 9/08/2020 8:30:27 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update_6:*:*:*:*:*:*
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update6:*:*:*:*:*:*