Critical severity9.1NVD Advisory· Published Jun 6, 2016· Updated Jun 17, 2026
CVE-2015-5041
CVE-2015-5041
Description
The J9 JVM in IBM SDK, Java Technology Edition 6 before SR16 FP20, 6 R1 before SR8 FP20, 7 before SR9 FP30, and 7 R1 before SR3 FP30 allows remote attackers to obtain sensitive information or inject data by invoking non-public interface methods.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
29- cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:*:*:*:*Range: <=3.0.9.20
cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*+ 3 more
- cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server:12:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp4:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp4:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:*:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1:*:*:*:*:*:*
- osv-coords17 versionspkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2012pkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/java-1_6_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/java-1_7_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/java-1_7_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/java-1_7_1-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1
< 1.6.0_sr16.20-30.1+ 16 more
- (no CPE)range: < 1.6.0_sr16.20-30.1
- (no CPE)range: < 1.6.0_sr16.20-49.1
- (no CPE)range: < 1.6.0_sr16.20-51.1
- (no CPE)range: < 1.7.0_sr9.30-45.1
- (no CPE)range: < 1.7.0_sr9.30-47.1
- (no CPE)range: < 1.7.1_sr3.30-9.1
- (no CPE)range: < 1.7.1_sr3.30-21.1
- (no CPE)range: < 1.7.1_sr3.30-21.1
- (no CPE)range: < 1.7.1_sr3.30-9.1
- (no CPE)range: < 1.7.1_sr3.30-21.1
- (no CPE)range: < 1.7.1_sr3.30-21.1
- (no CPE)range: < 1.7.1_sr3.30-9.1
- (no CPE)range: < 1.7.1_sr3.30-21.1
- (no CPE)range: < 1.7.1_sr3.30-21.1
- (no CPE)range: < 1.8.0_sr2.10-7.1
- (no CPE)range: < 1.8.0_sr2.10-7.1
- (no CPE)range: < 1.8.0_sr2.10-7.1
Patches
Vulnerability mechanics
References
8- lists.opensuse.org/opensuse-security-announce/2016-02/msg00026.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-02/msg00028.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-02/msg00031.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-02/msg00032.htmlnvdMailing ListThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- www.securityfocus.com/bid/82451nvdThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2016:1430nvdThird Party Advisory
News mentions
0No linked articles in our index yet.