Description
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.
Remediation
References
Related Vulnerabilities
WordPress Plugin Traffic Manager Multiple Vulnerabilities (1.4.5)
Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.34)
WordPress Plugin Integration for Contact Form 7 and Constant Contact Cross-Site Scripting (1.0.8)
WordPress Plugin Convert Plus Unspecified Vulnerability (3.5.6)
Jenkins Improper Input Validation Vulnerability (CVE-2015-1808)