Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2022-21291

🗓️ 19 Jan 2022 11:23:29Reported by oracleType 
cve
 cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 343 Views

Vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition allowing unauthorized access to data

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Vulnerabilities in Java affects IBM Cloud Application Business Insights - Quaterly Java update, CVE-2021-35603 and CVE-2021-35550
30 Dec 202215:09
ibm
IBM Security Bulletins		Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Jan 2022 - Includes Oracle® January 2022 CPU affects IBM Tivoli Composite Application Manager for Transactions-Robotic Response Time
22 Jun 202202:20
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Business Developer
24 Jun 202213:23
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities have been identified in IBM SDK, Java Technology Edition shipped with IBM Robotic Process Automation
20 Jul 202218:20
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Business Service Manager
22 Jun 202204:07
ibm
IBM Security Bulletins		Security Bulletin: IBM MQ Internet Pass-Thru is vulnerable to an issue within IBM® Runtime Environment Java™ Technology Edition, Version 7. (CVE-2022-21305, CVE-2022-21291)
21 Jun 202216:22
ibm
IBM Security Bulletins		Security Bulletin: IBM MQ is vulnerable to multiple issues within IBM® Runtime Environment Java™ Technology Edition, Versions 7 and 8 (CVE-2021-35603, CVE-2022-21305, CVE-2022-21291, CVE-2021-35550)
16 Nov 202211:30
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in IBM Java included with IBM Tivoli Monitoring
30 Dec 202217:31
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in Java SE affect IBM CICS TX Advanced
14 Feb 202321:04
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities exist in the IBM® SDK, Java™ Technology Edition affecting IBM Tivoli Network Manager
24 May 202210:09
ibm
Rows per page
NVD
Vulners
Node
oraclegraalvmMatch20.3.4enterprise
OR
oraclegraalvmMatch21.3.0enterprise
OR
oraclejdkMatch1.7.0update321
OR
oraclejdkMatch1.8.0update311
OR
oraclejdkMatch11.0.13
OR
oraclejdkMatch17.0.1
OR
oraclejreMatch1.7.0update321
OR
oraclejreMatch1.8.0update311
OR
oraclejreMatch11.0.13
OR
oraclejreMatch17.0.1
Node
debiandebian_linuxMatch10.0
OR
debiandebian_linuxMatch11.0
Node
netapp7-mode_transition_toolMatch-
OR
netappactive_iq_unified_managerMatch-vmware_vsphere
OR
netappactive_iq_unified_managerMatch-windows
OR
netappcloud_insights_acquisition_unitMatch-
OR
netappcloud_secure_agentMatch-
OR
netappe-series_santricity_os_controllerRange11.0.011.70.1
OR
netappe-series_santricity_storage_managerMatch-
OR
netappe-series_santricity_web_servicesMatch-web_services_proxy
OR
netapphci_management_nodeMatch-
OR
netapponcommand_insightMatch-
OR
netapponcommand_workflow_automationMatch-
OR
netappsantricity_storage_pluginMatch-vcenter
OR
netappsantricity_unified_managerMatch-
OR
netappsnapmanagerMatch-oracle
OR
netappsnapmanagerMatch-sap
OR
netappsolidfireMatch-
Node
oracleopenjdkRange1111.0.13
OR
oracleopenjdkRange1313.0.9
OR
oracleopenjdkRange1515.0.5
OR
oracleopenjdkMatch17
OR
oracleopenjdkMatch17.0.1
Node
fedoraprojectfedoraMatch34
[
  {
    "product": "Java SE JDK and JRE",
    "vendor": "Oracle Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Oracle Java SE:7u321"
      },
      {
        "status": "affected",
        "version": "Oracle Java SE:8u311"
      },
      {
        "status": "affected",
        "version": "Oracle Java SE:11.0.13"
      },
      {
        "status": "affected",
        "version": "Oracle Java SE:17.0.1"
      },
      {
        "status": "affected",
        "version": "Oracle GraalVM Enterprise Edition:20.3.4"
      },
      {
        "status": "affected",
        "version": "Oracle GraalVM Enterprise Edition:21.3.0"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
27 May 2026 15:16Current
4.7Medium risk
Vulners AI Score4.7
CVSS 25
CVSS 3.15.3
EPSS0.00111
SSVC
CWE-284
oraclejavasegraalvmenterprisevulnerabilityunauthorized accesscve-2022-21291nvdnetwork accesssecurityintegrityexploit
343