CVE-2022-21299

🗓️ 19 Jan 2022 11:23:43Reported by oracleType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 361 Views

Vulnerability in Oracle Java SE & GraalVM, allowing unauthorized DO

Reporter	Title	Published	Views	Family All 387
IBM Security Bulletins	Security Bulletin: IBM Rational Build Forge 8.0.0.24 addresses multiple vulnerabilities by updating IBMJDK	31 Oct 202315:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - January 2019 through July 2022 affects AIX LPARs in IBM PureData System for Operational Analytics	4 Nov 202220:17	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Business Developer	24 Jun 202213:23	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in IBM SDK, Java Technology Edition shipped with IBM Robotic Process Automation	20 Jul 202218:20	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in IBM Java affects IBM ILOG CPLEX Optimization Studio (CVE-2022-21299)	28 Sep 202215:37	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability (CVE-2022-21299) in IBM Java Runtime affects CICS Transaction Gateway	22 Jun 202212:06	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM® SDK, Java™ Technology Edition shipped with IBM Tivoli Business Service Manager (CVE-2021-2161)	30 Sep 202206:31	–	ibm
IBM Security Bulletins	Security Bulletin: XML vulnerability found in IBM Java 8.0 which is shipped with IBM® Intelligent Operations Center (CVE-2022-21299)	8 Sep 202213:15	–	ibm
IBM Security Bulletins	Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Apr 2022and Jul 2022	26 Oct 202214:25	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in the IBM Java Runtime affect IBM Rational ClearQuest (CVE-2021-35561, CVE-2022-21299, CVE-2022-21496)	26 Jul 202211:27	–	ibm

NVD

Vulners

Node

oracle graalvmMatch20.3.4enterprise

oracle graalvmMatch21.3.0enterprise

oracle jdkMatch1.7.0update321

oracle jdkMatch1.8.0update311

oracle jdkMatch11.0.13

oracle jdkMatch17.0.1

oracle jreMatch1.7.0update321

oracle jreMatch1.8.0update311

oracle jreMatch11.0.13

oracle jreMatch17.0.1

Node

netapp 7-mode_transition_toolMatch-

netapp active_iq_unified_managerMatch-vmware_vsphere

netapp active_iq_unified_managerMatch-windows

netapp cloud_insights_acquisition_unitMatch-

netapp cloud_secure_agentMatch-

netapp e-series_santricity_os_controllerRange11.0.0–11.70.1

netapp e-series_santricity_storage_managerMatch-

netapp e-series_santricity_web_servicesMatch-web_services_proxy

netapp hci_management_nodeMatch-

netapp oncommand_insightMatch-

netapp oncommand_workflow_automationMatch-

netapp santricity_storage_pluginMatch-vcenter

netapp santricity_unified_managerMatch-

netapp snapmanagerMatch-oracle

netapp snapmanagerMatch-sap

netapp solidfireMatch-

Node

debian debian_linuxMatch9.0

debian debian_linuxMatch10.0

debian debian_linuxMatch11.0

Node

oracle openjdkRange11–11.0.13

oracle openjdkRange13–13.0.9

oracle openjdkRange15–15.0.5

oracle openjdkMatch7-

oracle openjdkMatch7update1

oracle openjdkMatch7update10

oracle openjdkMatch7update101

oracle openjdkMatch7update11

oracle openjdkMatch7update111

oracle openjdkMatch7update121

oracle openjdkMatch7update13

oracle openjdkMatch7update131

oracle openjdkMatch7update141

oracle openjdkMatch7update15

oracle openjdkMatch7update151

oracle openjdkMatch7update161

oracle openjdkMatch7update17

oracle openjdkMatch7update171

oracle openjdkMatch7update181

oracle openjdkMatch7update191

oracle openjdkMatch7update2

oracle openjdkMatch7update201

oracle openjdkMatch7update21

oracle openjdkMatch7update211

oracle openjdkMatch7update221

oracle openjdkMatch7update231

oracle openjdkMatch7update241

oracle openjdkMatch7update25

oracle openjdkMatch7update251

oracle openjdkMatch7update261

oracle openjdkMatch7update271

oracle openjdkMatch7update281

oracle openjdkMatch7update291

oracle openjdkMatch7update3

oracle openjdkMatch7update301

oracle openjdkMatch7update311

oracle openjdkMatch7update321

oracle openjdkMatch7update4

oracle openjdkMatch7update40

oracle openjdkMatch7update45

oracle openjdkMatch7update5

oracle openjdkMatch7update51

oracle openjdkMatch7update55

oracle openjdkMatch7update6

oracle openjdkMatch7update60

oracle openjdkMatch7update65

oracle openjdkMatch7update67

oracle openjdkMatch7update7

oracle openjdkMatch7update72

oracle openjdkMatch7update76

oracle openjdkMatch7update80

oracle openjdkMatch7update85

oracle openjdkMatch7update9

oracle openjdkMatch7update91

oracle openjdkMatch7update95

oracle openjdkMatch7update97

oracle openjdkMatch7update99

oracle openjdkMatch8-

oracle openjdkMatch8milestone1

oracle openjdkMatch8milestone2

oracle openjdkMatch8milestone3

oracle openjdkMatch8milestone4

oracle openjdkMatch8milestone5

oracle openjdkMatch8milestone6

oracle openjdkMatch8milestone7

oracle openjdkMatch8milestone8

oracle openjdkMatch8milestone9

oracle openjdkMatch8update101

oracle openjdkMatch8update102

oracle openjdkMatch8update11

oracle openjdkMatch8update111

oracle openjdkMatch8update112

oracle openjdkMatch8update121

oracle openjdkMatch8update131

oracle openjdkMatch8update141

oracle openjdkMatch8update151

oracle openjdkMatch8update152

oracle openjdkMatch8update161

oracle openjdkMatch8update162

oracle openjdkMatch8update171

oracle openjdkMatch8update172

oracle openjdkMatch8update181

oracle openjdkMatch8update191

oracle openjdkMatch8update192

oracle openjdkMatch8update20

oracle openjdkMatch8update201

oracle openjdkMatch8update202

oracle openjdkMatch8update211

oracle openjdkMatch8update212

oracle openjdkMatch8update221

oracle openjdkMatch8update222

oracle openjdkMatch8update231

oracle openjdkMatch8update232

oracle openjdkMatch8update241

oracle openjdkMatch8update242

oracle openjdkMatch8update25

oracle openjdkMatch8update252

oracle openjdkMatch8update262

oracle openjdkMatch8update271

oracle openjdkMatch8update281

oracle openjdkMatch8update282

oracle openjdkMatch8update291

oracle openjdkMatch8update301

oracle openjdkMatch8update302

oracle openjdkMatch8update31

oracle openjdkMatch8update312

oracle openjdkMatch8update40

oracle openjdkMatch8update45

oracle openjdkMatch8update5

oracle openjdkMatch8update51

oracle openjdkMatch8update60

oracle openjdkMatch8update65

oracle openjdkMatch8update66

oracle openjdkMatch8update71

oracle openjdkMatch8update72

oracle openjdkMatch8update73

oracle openjdkMatch8update74

oracle openjdkMatch8update77

oracle openjdkMatch8update91

oracle openjdkMatch8update92

oracle openjdkMatch17

oracle openjdkMatch17.0.1

[
  {
    "product": "Java SE JDK and JRE",
    "vendor": "Oracle Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Oracle Java SE:7u321"
      },
      {
        "status": "affected",
        "version": "Oracle Java SE:8u311"
      },
      {
        "status": "affected",
        "version": "Oracle Java SE:11.0.13"
      },
      {
        "status": "affected",
        "version": "Oracle Java SE:17.0.1"
      },
      {
        "status": "affected",
        "version": "Oracle GraalVM Enterprise Edition:20.3.4"
      },
      {
        "status": "affected",
        "version": "Oracle GraalVM Enterprise Edition:21.3.0"
      }
    ]
  }
]

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2022/02/msg00011.html
security	www.security.gentoo.org/glsa/202209-05
debian	www.debian.org/security/2022/dsa-5057
security	www.security.netapp.com/advisory/ntap-20240621-0006/
debian	www.debian.org/security/2022/dsa-5058
oracle	www.oracle.com/security-alerts/cpujan2022.html
security	www.security.netapp.com/advisory/ntap-20220121-0007/

27 May 2026 17:16Current

4.9Medium risk

Vulners AI Score4.9

CVSS 25

CVSS 3.15.3

EPSS0.00097

SSVC

CWE-400