CVE-2015-4796

critical

Description

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2, when running on Windows, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-4888.

References

http://www.securitytracker.com/id/1033883

http://www.securityfocus.com/bid/77193

http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

Details

Source: Mitre, NVD

Published: 2015-10-21

Updated: 2016-12-24

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.9

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Severity: Critical