suse · CVE-2015-5006

Quick triage

Priority: medium Published: 2021-05-30 13:31:30 UTC Updated: 2026-04-18 18:15:59 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2015-5006 severity moderate: SUSE including 95 source package names (java-1_6_0-ibm-1.6.0_sr16.15-27.1, java-1_6_0-ibm-1.6.0_sr16.15-46.1, …), 199 product×package rows across 52 product lines (Image SLES12-SP5-Azure-SAP-BYOS, Image SLES12-SP5-Azure-SAP-On-Demand, … (52 product lines)): Fixed 170, Known Not Affected 29.

Description:

IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3 FP20, 7 before SR9 FP20, 6 R1 before SR8 FP15, and 6 before SR16 FP15 allow physically proximate attackers to obtain sensitive information by reading the Kerberos Credential Cache.

cvelogic Threat Intelligence