CVE-2015-9251: XSS
First published: Tue Nov 29 2016(Updated: )
Affected versions of `jquery` interpret `text/javascript` responses from cross-origin ajax requests, and automatically execute the contents in `jQuery.globalEval`, even when the ajax request doesn't contain the `dataType` option. ## Recommendation Update to version 3.0.0 or later.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| maven/org.webjars.npm:jquery | >=1.12.3<3.0.0 | 3.0.0 |
| maven/org.webjars.npm:jquery | <1.12.2 | 1.12.2 |
| rubygems/jquery-rails | <4.2.0 | 4.2.0 |
| npm/jquery | >=1.12.3<3.0.0 | 3.0.0 |
| npm/jquery | <1.12.2 | 1.12.2 |
| nuget/jQuery | >=1.12.3<3.0.0 | 3.0.0 |
| nuget/jQuery | <1.12.2 | 1.12.2 |
| redhat/jquery | <3.0.0 | 3.0.0 |
| jQuery | <3.0.0 | |
| Oracle Agile Product Lifecycle Management for Process | =6.2.0.0 | |
| Oracle Agile Product Lifecycle Management for Process | =6.2.1.0 | |
| Oracle Agile Product Lifecycle Management for Process | =6.2.2.0 | |
| Oracle Agile Product Lifecycle Management for Process | =6.2.3.0 | |
| Oracle Agile Product Lifecycle Management for Process | =6.2.3.1 | |
| oracle banking platform | =2.6.0 | |
| oracle banking platform | =2.6.1 | |
| oracle banking platform | =2.6.2 | |
| Oracle Business Process Management Suite | =11.1.1.9.0 | |
| Oracle Business Process Management Suite | =12.1.3.0.0 | |
| Oracle Business Process Management Suite | =12.2.1.3.0 | |
| Oracle Communications Converged Application Server | <7.0.0.1 | |
| Oracle Communications Interactive Session Recorder | =6.0 | |
| Oracle Communications Interactive Session Recorder | =6.1 | |
| Oracle Communications Interactive Session Recorder | =6.2 | |
| Oracle Communications Services Gatekeeper | <6.1.0.4.0 | |
| Oracle WebRTC Session Controller | <7.2 | |
| Oracle Endeca Information Discovery Studio | =3.1.0 | |
| Oracle Endeca Information Discovery Studio | =3.2.0 | |
| Oracle Enterprise Manager Ops Center | =12.2.2 | |
| Oracle Enterprise Manager Ops Center | =12.3.3 | |
| Oracle Enterprise Operations Monitor | =3.4 | |
| Oracle Enterprise Operations Monitor | =4.0 | |
| Oracle Financial Services Analytical Applications Infrastructure | >=7.3.3<=7.3.5 | |
| Oracle Financial Services Analytical Applications Infrastructure | >=8.0.0<=8.0.7 | |
| Oracle Financial Services Asset Liability Management | >=8.0.4<=8.0.7 | |
| oracle financial services data integration hub | >=8.0.5<=8.0.7 | |
| Oracle Financial Services Funds Transfer Pricing | >=8.0.4<=8.0.7 | |
| Oracle Financial Services Hedge Management and IFRS Valuations | >=8.0.4<=8.0.7 | |
| Oracle Financial Services Liquidity Risk Management | >=8.0.2<=8.0.6 | |
| Oracle Financial Services Loan Loss Forecasting and Provisioning | >=8.0.2<=8.0.7 | |
| Oracle Financial Services Market Risk Measurement and Management | =8.0.5 | |
| Oracle Financial Services Market Risk Measurement and Management | =8.0.6 | |
| Oracle Financial Services Profitability Management | >=8.0.4<=8.0.6 | |
| Oracle Financial Services Analytical Applications Reconciliation Framework | =8.0.5 | |
| Oracle Financial Services Analytical Applications Reconciliation Framework | =8.0.6 | |
| Oracle Spatial and Graph MapViewer | =12.2.1.3.0 | |
| Oracle Healthcare Foundation | =7.1 | |
| Oracle Healthcare Foundation | =7.2 | |
| Oracle Healthcare Translational Research | =3.1.0 | |
| Oracle Hospitality Cruise Fleet Management | =9.0.11 | |
| Oracle Hospitality Guest Access | =4.2.0 | |
| Oracle Hospitality Guest Access | =4.2.1 | |
| Oracle Hospitality Materials Control | =18.1 | |
| Oracle Hospitality Reporting and Analytics | =9.1.0 | |
| Oracle Insurance Insbridge Rating and Underwriting | =5.2 | |
| Oracle Insurance Insbridge Rating and Underwriting | =5.4 | |
| Oracle Insurance Insbridge Rating and Underwriting | =5.5 | |
| Oracle JD Edwards EnterpriseOne Tools | =9.2 | |
| Oracle JDeveloper | =11.1.1.9.0 | |
| Oracle JDeveloper | =12.1.3.0.0 | |
| Oracle JDeveloper | =12.2.1.3.0 | |
| Oracle OSS Support Tools | =19.1 | |
| Oracle PeopleSoft Enterprise PeopleTools | =8.55 | |
| Oracle PeopleSoft Enterprise PeopleTools | =8.56 | |
| Oracle PeopleSoft Enterprise PeopleTools | =8.57 | |
| oracle primavera gateway | =15.2 | |
| oracle primavera gateway | =16.2 | |
| oracle primavera gateway | =17.12 | |
| Oracle Primavera Unifier | >=17.1<=17.12 | |
| Oracle Primavera Unifier | =16.1 | |
| Oracle Primavera Unifier | =16.2 | |
| Oracle Primavera Unifier | =18.8 | |
| Oracle Real-Time Scheduler | =2.3.0 | |
| oracle retail allocation | =15.0.2 | |
| Oracle Retail Customer Insights | =15.0 | |
| Oracle Retail Customer Insights | =16.0 | |
| Oracle Retail Invoice Matching | =15.0 | |
| Oracle Retail Sales Audit | =15.0 | |
| Oracle Retail Workforce Management | =1.60.9 | |
| Oracle Retail Workforce Management | =1.64.0 | |
| Oracle Service Bus | =12.1.3.0.0 | |
| Oracle Service Bus | =12.2.1.3.0 | |
| Oracle Siebel User Interface Framework | =18.10 | |
| Oracle Siebel User Interface Framework | =18.11 | |
| Oracle Utilities Framework | >=4.3.0.1<=4.3.0.4 | |
| oracle utilities mobile workforce management | =2.3.0 | |
| Oracle WebCenter Sites | =11.1.1.8.0 | |
| Oracle WebLogic Server | =12.1.3.0 | |
| Oracle WebLogic Server | =12.2.1.3 | |
| IBM ApplinX | <=11.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2015-9251
- https://github.com/jquery/jquery/issues/2432
- https://github.com/jquery/jquery/pull/2588
- https://github.com/jquery/jquery/commit/b078a62013782c7424a4a61a240c23c4c0b42614
- https://github.com/jquery/jquery/pull/2588/commits/c254d308a7d3f1eac4d0b42837804cfffcba4bb2
- https://github.com/jquery/jquery/commit/f60729f3903d17917dc351f3ac87794de379b0cc
- https://access.redhat.com/errata/RHSA-2020:0481
- https://access.redhat.com/errata/RHSA-2020:0729
- https://ics-cert.us-cert.gov/advisories/ICSA-18-212-04
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601
- https://lists.apache.org/thread.html/10f0f3aefd51444d1198c65f44ffdf2d78ca3359423dbc1c168c9731@%3Cdev.flink.apache.org%3E
- https://lists.apache.org/thread.html/17ff53f7999e74fbe3cc0ceb4e1c3b00b180b7c5afec8e978837bc49@%3Cuser.flink.apache.org%3E
- https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E
- https://lists.apache.org/thread.html/52bafac05ad174000ea465fe275fd3cc7bd5c25535a7631c0bc9bfb2@%3Cuser.flink.apache.org%3E
- https://lists.apache.org/thread.html/54df3aeb4239b64b50b356f0ca6f986e3c4ca5b84c515dce077c7854@%3Cuser.flink.apache.org%3E
- https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E
- https://lists.apache.org/thread.html/ba79cf1658741e9f146e4c59b50aee56656ea95d841d358d006c18b6@%3Ccommits.roller.apache.org%3E
- https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E
- https://seclists.org/bugtraq/2019/May/18
- https://security.netapp.com/advisory/ntap-20210108-0004/
- https://snyk.io/vuln/npm:jquery:20150627
- https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec126.pdf
- https://www.oracle.com/security-alerts/cpuapr2020.html
- https://www.oracle.com/security-alerts/cpujan2020.html
- https://www.oracle.com/security-alerts/cpujul2020.html
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
- https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
- https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
- https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
- https://www.tenable.com/security/tns-2019-08
- http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00041.html
- http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html
- http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html
- http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html
- http://seclists.org/fulldisclosure/2019/May/10
- http://seclists.org/fulldisclosure/2019/May/11
- http://seclists.org/fulldisclosure/2019/May/13
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- https://security.snyk.io/vuln/SNYK-DOTNET-JQUERY-450227
- https://github.com/jquery/jquery/issues/2432#issuecomment-403761229
- https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#420
- https://github.com/rails/jquery-rails/blob/v4.2.0/vendor/assets/javascripts/jquery3.js#L9377
- https://web.archive.org/web/20200227030101/http://www.securityfocus.com/bid/105658
- https://github.com/rails/jquery-rails/releases/tag/v4.2.0
- https://github.com/rubysec/ruby-advisory-db/blob/master/gems/jquery-rails/CVE-2015-9251.yml
- https://github.com/advisories/GHSA-rmxg-73gg-4p98 (Advisory)
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399551
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399552
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399549
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399550
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399547
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399548
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399553
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399554
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399556
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591857
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1399546#c17
- https://access.redhat.com/errata/RHSA-2020:0983
- https://access.redhat.com/errata/RHSA-2020:3936
- https://access.redhat.com/errata/RHSA-2020:4670
- https://access.redhat.com/errata/RHSA-2020:4847
- https://access.redhat.com/errata/RHSA-2023:0553
- https://access.redhat.com/errata/RHSA-2023:0552
- https://access.redhat.com/errata/RHSA-2023:0554
- https://access.redhat.com/errata/RHSA-2023:0556
- https://bugzilla.redhat.com/show_bug.cgi?id=1399546
- http://www.securityfocus.com/bid/105658
- https://lists.apache.org/thread.html/54df3aeb4239b64b50b356f0ca6f986e3c4ca5b84c515dce077c7854%40%3Cuser.flink.apache.org%3E
- https://lists.apache.org/thread.html/10f0f3aefd51444d1198c65f44ffdf2d78ca3359423dbc1c168c9731%40%3Cdev.flink.apache.org%3E
- https://lists.apache.org/thread.html/17ff53f7999e74fbe3cc0ceb4e1c3b00b180b7c5afec8e978837bc49%40%3Cuser.flink.apache.org%3E
- https://lists.apache.org/thread.html/52bafac05ad174000ea465fe275fd3cc7bd5c25535a7631c0bc9bfb2%40%3Cuser.flink.apache.org%3E
- https://lists.apache.org/thread.html/ba79cf1658741e9f146e4c59b50aee56656ea95d841d358d006c18b6%40%3Ccommits.roller.apache.org%3E
- https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442%40%3Cdev.drill.apache.org%3E
- https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f%40%3Cdev.drill.apache.org%3E
- https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc%40%3Cissues.drill.apache.org%3E
- https://www.ibm.com/support/pages/node/7182522 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2015-9251?
CVE-2015-9251 is categorized as a moderate severity vulnerability due to its potential to execute malicious scripts through cross-origin requests.
How do I fix CVE-2015-9251?
To remediate CVE-2015-9251, upgrade jQuery to version 3.0.0 or later.
What versions of jQuery are affected by CVE-2015-9251?
CVE-2015-9251 affects jQuery versions prior to 3.0.0, including all versions from 1.12.3 and below.
What are the potential impacts of CVE-2015-9251?
Exploitation of CVE-2015-9251 may allow malicious scripts to be executed in the context of the user's browser, potentially leading to data theft.
Is there any specific software that is affected by CVE-2015-9251?
Various software products, including IBM RTC and Oracle applications, utilize affected versions of jQuery and may be impacted by CVE-2015-9251.
- collector/github-advisory-latest
- alias/GHSA-rmxg-73gg-4p98
- alias/CVE-2015-9251
- collector/github-advisory
- agent/type
- agent/remedy
- agent/first-publish-date
- agent/severity
- agent/weakness
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/event
- agent/trending
- agent/source
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-cve
- agent/author
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/ibm-support
- source/IBM
- package-manager/maven
- package-manager/rubygems
- package-manager/npm
- package-manager/nuget
- package-manager/redhat
- vendor/jquery
- canonical/jquery
- vendor/oracle
- canonical/oracle agile product lifecycle management for process
- version/oracle agile product lifecycle management for process/6.2.0.0
- version/oracle agile product lifecycle management for process/6.2.1.0
- version/oracle agile product lifecycle management for process/6.2.2.0
- version/oracle agile product lifecycle management for process/6.2.3.0
- version/oracle agile product lifecycle management for process/6.2.3.1
- canonical/oracle banking platform
- version/oracle banking platform/2.6.0
- version/oracle banking platform/2.6.1
- version/oracle banking platform/2.6.2
- canonical/oracle business process management suite
- version/oracle business process management suite/11.1.1.9.0
- version/oracle business process management suite/12.1.3.0.0
- version/oracle business process management suite/12.2.1.3.0
- canonical/oracle communications converged application server
- canonical/oracle communications interactive session recorder
- version/oracle communications interactive session recorder/6.0
- version/oracle communications interactive session recorder/6.1
- version/oracle communications interactive session recorder/6.2
- canonical/oracle communications services gatekeeper
- canonical/oracle webrtc session controller
- canonical/oracle endeca information discovery studio
- version/oracle endeca information discovery studio/3.1.0
- version/oracle endeca information discovery studio/3.2.0
- canonical/oracle enterprise manager ops center
- version/oracle enterprise manager ops center/12.2.2
- version/oracle enterprise manager ops center/12.3.3
- canonical/oracle enterprise operations monitor
- version/oracle enterprise operations monitor/3.4
- version/oracle enterprise operations monitor/4.0
- canonical/oracle financial services analytical applications infrastructure
- version/oracle financial services analytical applications infrastructure/7.3.3
- version/oracle financial services analytical applications infrastructure/7.3.5
- version/oracle financial services analytical applications infrastructure/8.0.0
- version/oracle financial services analytical applications infrastructure/8.0.7
- canonical/oracle financial services asset liability management
- version/oracle financial services asset liability management/8.0.4
- version/oracle financial services asset liability management/8.0.7
- canonical/oracle financial services data integration hub
- version/oracle financial services data integration hub/8.0.5
- version/oracle financial services data integration hub/8.0.7
- canonical/oracle financial services funds transfer pricing
- version/oracle financial services funds transfer pricing/8.0.4
- version/oracle financial services funds transfer pricing/8.0.7
- canonical/oracle financial services hedge management and ifrs valuations
- version/oracle financial services hedge management and ifrs valuations/8.0.4
- version/oracle financial services hedge management and ifrs valuations/8.0.7
- canonical/oracle financial services liquidity risk management
- version/oracle financial services liquidity risk management/8.0.2
- version/oracle financial services liquidity risk management/8.0.6
- canonical/oracle financial services loan loss forecasting and provisioning
- version/oracle financial services loan loss forecasting and provisioning/8.0.2
- version/oracle financial services loan loss forecasting and provisioning/8.0.7
- canonical/oracle financial services market risk measurement and management
- version/oracle financial services market risk measurement and management/8.0.5
- version/oracle financial services market risk measurement and management/8.0.6
- canonical/oracle financial services profitability management
- version/oracle financial services profitability management/8.0.4
- version/oracle financial services profitability management/8.0.6
- canonical/oracle financial services analytical applications reconciliation framework
- version/oracle financial services analytical applications reconciliation framework/8.0.5
- version/oracle financial services analytical applications reconciliation framework/8.0.6
- canonical/oracle spatial and graph mapviewer
- version/oracle spatial and graph mapviewer/12.2.1.3.0
- canonical/oracle healthcare foundation
- version/oracle healthcare foundation/7.1
- version/oracle healthcare foundation/7.2
- canonical/oracle healthcare translational research
- version/oracle healthcare translational research/3.1.0
- canonical/oracle hospitality cruise fleet management
- version/oracle hospitality cruise fleet management/9.0.11
- canonical/oracle hospitality guest access
- version/oracle hospitality guest access/4.2.0
- version/oracle hospitality guest access/4.2.1
- canonical/oracle hospitality materials control
- version/oracle hospitality materials control/18.1
- canonical/oracle hospitality reporting and analytics
- version/oracle hospitality reporting and analytics/9.1.0
- canonical/oracle insurance insbridge rating and underwriting
- version/oracle insurance insbridge rating and underwriting/5.2
- version/oracle insurance insbridge rating and underwriting/5.4
- version/oracle insurance insbridge rating and underwriting/5.5
- canonical/oracle jd edwards enterpriseone tools
- version/oracle jd edwards enterpriseone tools/9.2
- canonical/oracle jdeveloper
- version/oracle jdeveloper/11.1.1.9.0
- version/oracle jdeveloper/12.1.3.0.0
- version/oracle jdeveloper/12.2.1.3.0
- canonical/oracle oss support tools
- version/oracle oss support tools/19.1
- canonical/oracle peoplesoft enterprise peopletools
- version/oracle peoplesoft enterprise peopletools/8.55
- version/oracle peoplesoft enterprise peopletools/8.56
- version/oracle peoplesoft enterprise peopletools/8.57
- canonical/oracle primavera gateway
- version/oracle primavera gateway/15.2
- version/oracle primavera gateway/16.2
- version/oracle primavera gateway/17.12
- canonical/oracle primavera unifier
- version/oracle primavera unifier/17.1
- version/oracle primavera unifier/17.12
- version/oracle primavera unifier/16.1
- version/oracle primavera unifier/16.2
- version/oracle primavera unifier/18.8
- canonical/oracle real-time scheduler
- version/oracle real-time scheduler/2.3.0
- canonical/oracle retail allocation
- version/oracle retail allocation/15.0.2
- canonical/oracle retail customer insights
- version/oracle retail customer insights/15.0
- version/oracle retail customer insights/16.0
- canonical/oracle retail invoice matching
- version/oracle retail invoice matching/15.0
- canonical/oracle retail sales audit
- version/oracle retail sales audit/15.0
- canonical/oracle retail workforce management
- version/oracle retail workforce management/1.60.9
- version/oracle retail workforce management/1.64.0
- canonical/oracle service bus
- version/oracle service bus/12.1.3.0.0
- version/oracle service bus/12.2.1.3.0
- canonical/oracle siebel user interface framework
- version/oracle siebel user interface framework/18.10
- version/oracle siebel user interface framework/18.11
- canonical/oracle utilities framework
- version/oracle utilities framework/4.3.0.1
- version/oracle utilities framework/4.3.0.4
- canonical/oracle utilities mobile workforce management
- version/oracle utilities mobile workforce management/2.3.0
- canonical/oracle webcenter sites
- version/oracle webcenter sites/11.1.1.8.0
- canonical/oracle weblogic server
- version/oracle weblogic server/12.1.3.0
- version/oracle weblogic server/12.2.1.3
- vendor/ibm
- canonical/ibm applinx
- version/ibm applinx/11.1