CVE-2015-2590
Oracle Java SE and Java SE Embedded Remote Code Execution Vulnerability
CVSS
—
No CVSS
EPSS
25.5%
p98
KEV
YES
Mar 3, 2022
Exploit Today
79
0-100
Published: — · Last modified: —
25.5%EPSS · 30 days25.7%
2026-06-302026-07-16
Product
Oracle / Java SE
Vulnerability
Oracle Java SE and Java SE Embedded Remote Code Execution Vulnerability
Added to KEV
Mar 3, 2022
Remediate by
Mar 24, 2022
Known ransomware use
No
Summary description
An unspecified vulnerability exists within Oracle Java Runtime Environment that allows an attacker to perform remote code execution.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2015-2590
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2013-2465—99.9%
KEV—80Oracle Java SE Unspecified Vulnerability—CVE-2012-4681—99.9%
KEV—80Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability—CVE-2012-0507—99.9%
KEV—80Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability—CVE-2012-1723—99.8%
KEV—80Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability—CVE-2012-5076—99.8%
KEV—80Oracle Java SE Sandbox Bypass Vulnerability—CVE-2015-4902—96.0%
KEV—79Oracle Java SE Integrity Check Vulnerability—