Unrated severityNVD Advisory· Published Jul 16, 2015· Updated May 6, 2026
CVE-2015-2601
CVE-2015-2601
Description
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, JRockit R28.3.6, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JCE.
Affected products
37cpe:2.3:a:oracle:jdk:1.6.0:update95:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:oracle:jdk:1.6.0:update95:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdk:1.7.0:update75:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdk:1.7.0:update80:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdk:1.8.0:update_33:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdk:1.8.0:update45:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.6.0:update_95:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:oracle:jre:1.6.0:update_95:*:*:*:*:*:*
- cpe:2.3:a:oracle:jre:1.7.0:update_75:*:*:*:*:*:*
- cpe:2.3:a:oracle:jre:1.7.0:update_80:*:*:*:*:*:*
- cpe:2.3:a:oracle:jre:1.8.0:update_33:*:*:*:*:*:*
- cpe:2.3:a:oracle:jre:1.8.0:update_45:*:*:*:*:*:*
- cpe:2.3:a:oracle:jrockit:r28.3.6:*:*:*:*:*:*:*
- osv-coords26 versionspkg:rpm/opensuse/java-1_7_0-openjdk&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/java-1_8_0-openjdk&distro=openSUSE%20Tumbleweedpkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2012pkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP1-LTSSpkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP1-TERADATApkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3pkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3pkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP3pkg:rpm/suse/java-1_7_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/java-1_7_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3pkg:rpm/suse/java-1_7_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/java-1_7_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3pkg:rpm/suse/java-1_7_0-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP3pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012
< 1.7.0.121-1.1+ 25 more
- (no CPE)range: < 1.7.0.121-1.1
- (no CPE)range: < 1.8.0.111-1.1
- (no CPE)range: < 1.6.0_sr16.7-22.2
- (no CPE)range: < 1.6.0_sr16.7-10.1
- (no CPE)range: < 1.6.0_sr16.7-10.1
- (no CPE)range: < 1.6.0_sr16.7-10.1
- (no CPE)range: < 1.6.0_sr16.7-10.1
- (no CPE)range: < 1.6.0_sr16.7-10.1
- (no CPE)range: < 1.6.0_sr16.7-10.1
- (no CPE)range: < 1.6.0_sr16.7-10.1
- (no CPE)range: < 1.7.0_sr9.10-9.1
- (no CPE)range: < 1.7.0_sr9.10-9.1
- (no CPE)range: < 1.7.0_sr9.10-9.1
- (no CPE)range: < 1.7.0_sr9.10-9.1
- (no CPE)range: < 1.7.0_sr9.10-9.1
- (no CPE)range: < 1.7.0.85-0.11.2
- (no CPE)range: < 1.7.0.85-0.11.2
- (no CPE)range: < 1.7.0.85-18.2
- (no CPE)range: < 1.7.0.85-18.2
- (no CPE)range: < 1.7.0.85-18.2
- (no CPE)range: < 1.7.1_sr3.10-3.1
- (no CPE)range: < 1.7.1_sr3.10-14.1
- (no CPE)range: < 1.7.1_sr3.10-3.1
- (no CPE)range: < 1.7.1_sr3.10-14.1
- (no CPE)range: < 1.7.1_sr3.10-3.1
- (no CPE)range: < 1.7.1_sr3.10-14.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
28- www.oracle.com/technetwork/topics/security/cpujul2015-2367936.htmlnvdPatchVendor Advisory
- kb.juniper.net/InfoCenter/indexnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1228.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1229.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1230.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1241.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1242.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1243.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1485.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1486.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1488.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1526.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1544.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1604.htmlnvd
- www.debian.org/security/2015/dsa-3316nvd
- www.debian.org/security/2015/dsa-3339nvd
- www.securityfocus.com/bid/75867nvd
- www.securitytracker.com/id/1032910nvd
- www.securitytracker.com/id/1037732nvd
- www.ubuntu.com/usn/USN-2696-1nvd
- www.ubuntu.com/usn/USN-2706-1nvd
- kc.mcafee.com/corporate/indexnvd
- security.gentoo.org/glsa/201603-11nvd
- security.gentoo.org/glsa/201603-14nvd
News mentions
0No linked articles in our index yet.