virus logo FortiClient Vulnerability

Oracle Java JRE CVE-2015-4000 Weak Encryption Vulnerability

description-logoDescription

Supported versions that are affected are Java SE 6u95, Java SE 7u80, Java SE 8u45, JRockit R28.3.6, Java SE Embedded 7u75 and Java SE Embedded 8u33. Very difficult to exploit vulnerability allows successful unauthenticated network attacks via SSL/TLS. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, JRockit, Java SE Embedded accessible data as well as read access to a subset of Java SE, JRockit, Java SE Embedded accessible data. Note: Applies to client and server deployment of JSSE.

affected-products-logoAffected Applications

Java JRE

CVE References

CVE-2015-4000

Other References

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
ID 25284
Created Jul 11, 2018
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Oracle
Patch auto
Application Java JRE