CVE-2015-2623

Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2, and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0, allows remote attackers to affect integrity via unknown vectors related to Java Server Faces.

Published: Jul 16, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-2623
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / fusion_middleware	3.1.2	3.1.2.x
oracle / fusion_middleware	12.1.1	12.1.1.x
oracle / fusion_middleware	12.1.3.0.0	12.1.3.0.0.x
oracle / fusion_middleware	3.0.1	3.0.1.x
oracle / fusion_middleware	10.3.6	10.3.6.x
oracle / fusion_middleware	12.1.2.0.0	12.1.2.0.0.x

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.securitytracker.com/id/1032953

Vulnerability Database

289,697

CVE-2015-2623