ID CVE-2015-4899
Summary Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2 allows remote attackers to affect confidentiality via unknown vectors related to Security.
References
Vulnerable Configurations
  • Oracle Fusion Middleware 3.0.1
    cpe:2.3:a:oracle:fusion_middleware:3.0.1
  • Oracle Fusion Middleware 3.1.2
    cpe:2.3:a:oracle:fusion_middleware:3.1.2
CVSS
Base: 4.3 (as of 07-04-2016 - 11:37)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
nessus via4
NASL family Web Servers
NASL id GLASSFISH_CPU_OCT_2015.NASL
description The version of Oracle GlassFish Server running on the remote host is affected by an unspecified information disclosure vulnerability due to an unspecified flaw in the Security subcomponent. A remote attacker can exploit this to disclose sensitive information.
last seen 2019-02-21
modified 2018-07-12
plugin id 86481
published 2015-10-21
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=86481
title Oracle GlassFish Server Unspecified Information Disclosure (October 2015 CPU)
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
sectrack 1033875
Last major update 23-12-2016 - 21:59
Published 21-10-2015 - 19:59
Back to Top