CVE-2015-5254

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 08-12-2015 01:00

Last modified: - 08-12-2015 01:00

Total changes: - 10

Description

CVE-2015-5254 JMS ObjectMessage: unsafe deserialization

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:S/C:P/I:P/A:P

Low

Attack complexity

Network

Attack vector

Low

Availability

Low

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

6.0

Base score

Exploitability score

Impact score

Verification logic

OR

AND

vendor=Red Hat Enterprise Linux AND product=jboss_amq AND version=6.3

AND

vendor=Red Hat Enterprise Linux AND product=jboss_fuse AND version=6.3

AND

product=activemq-0 AND versionEndExcluding=5.9.0-6.redhat.611454.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=jenkins-0 AND versionEndExcluding=1.625.3-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-enterprise-upgrade-0 AND versionEndExcluding=2.2.9-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-broker-util-0 AND versionEndExcluding=1.37.5.3-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-cartridge-cron-0 AND versionEndExcluding=1.25.2.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-cartridge-haproxy-0 AND versionEndExcluding=1.31.5.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-cartridge-mysql-0 AND versionEndExcluding=1.31.2.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-cartridge-php-0 AND versionEndExcluding=1.35.3.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-cartridge-python-0 AND versionEndExcluding=1.34.2.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-msg-node-mcollective-0 AND versionEndExcluding=1.30.2.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-node-proxy-0 AND versionEndExcluding=1.26.2.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=openshift-origin-node-util-0 AND versionEndExcluding=1.38.6.2-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=php-0 AND versionEndExcluding=5.3.3-46.el6_7.1

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=rhc-0 AND versionEndExcluding=1.38.6.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=rubygem-openshift-origin-common-0 AND versionEndExcluding=1.29.5.2-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=rubygem-openshift-origin-console-0 AND versionEndExcluding=1.35.5.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=rubygem-openshift-origin-controller-0 AND versionEndExcluding=1.38.5.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=rubygem-openshift-origin-frontend-apache-vhost-0 AND versionEndExcluding=0.13.2.1-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=rubygem-openshift-origin-node-0 AND versionEndExcluding=1.38.5.3-1.el6op

vendor=Red Hat Enterprise Linux AND product=openshift AND version=2.0

AND

product=activemq AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_amq AND version=6

AND

product=hornetq AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=6

AND

product=artemis AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=7

AND

product=activemq AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_fuse AND version=6

AND

product=activemq AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_fuse_service_works AND version=6.0

Reference

Keywords

REDHAT

CVE-2015-5254

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.