CVE-2023-22036

🗓️ 18 Jul 2023 20:18:20Reported by oracleType

Vulnerability in Oracle Java SE, Oracle GraalVM for JDK allowing unauthenticated attacker to cause partial denial of service

Reporter	Title	Published	Views	Family All 245
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities in Java affect IBM Robotic Process Automation	22 Nov 202320:50	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability with kernel , OpenJDK jna-platform affect IBM Cloud Object Storage Systems (Sept2023)	25 Sep 202322:05	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Golang, openSSH and openJDK might affect IBM Spectrum Copy Data Management	15 Sep 202313:26	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Partner Engagement Manager is vulnerable to low availability impacts due to Java SE (CVE-2023-22036)	12 Mar 202417:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Semeru Runtime affect z/Transaction Processing Facility	14 Dec 202320:29	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for September 2023	5 Oct 202308:42	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2023-22036, CVE-2023-22006, CVE-2023-22041, CVE-2023-22049 and CVE-2023-22045)	9 Apr 202419:59	–	ibm
IBM Security Bulletins	Security Bulletin: TSSC/IMC is vulnerable to low availability, low integrity and low confidentiality due to Java SE	8 Jul 202417:50	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Control Center v6.2.x and v6.3.x are vulnerable due to IBM Semeru Runtime vulnerabiliy	3 Oct 202412:50	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Connect:Direct Web Service is vulnerable to multiple vulnerabilities due to IBM Java	29 Jul 202404:26	–	ibm

NVD

Vulners

Node

oracle graalvmMatch20.3.10enterprise

oracle graalvmMatch21.3.6enterprise

oracle graalvmMatch22.3.2enterprise

oracle graalvm_for_jdkMatch17.0.7

oracle graalvm_for_jdkMatch20.0.1

oracle jdkMatch11.0.19

oracle jdkMatch17.0.7

oracle jdkMatch20.0.1

oracle jreMatch11.0.19

oracle jreMatch17.0.7

oracle jreMatch20.0.1

Node

debian debian_linuxMatch10.0

debian debian_linuxMatch11.0

debian debian_linuxMatch12.0

Node

netapp 7-mode_transition_toolMatch-

netapp active_iq_unified_managerMatch-vmware_vsphere

netapp active_iq_unified_managerMatch-windows

netapp cloud_insights_acquisition_unitMatch-

netapp cloud_insights_storage_workload_security_agentMatch-

netapp oncommand_insightMatch-

[
  {
    "vendor": "Oracle Corporation",
    "product": "Java SE JDK and JRE",
    "versions": [
      {
        "version": "Oracle Java SE:11.0.19",
        "status": "affected"
      },
      {
        "version": "Oracle Java SE:17.0.7",
        "status": "affected"
      },
      {
        "version": "Oracle Java SE:20.0.1",
        "status": "affected"
      },
      {
        "version": "Oracle GraalVM Enterprise Edition:20.3.10",
        "status": "affected"
      },
      {
        "version": "Oracle GraalVM Enterprise Edition:21.3.6",
        "status": "affected"
      },
      {
        "version": "Oracle GraalVM Enterprise Edition:22.3.2",
        "status": "affected"
      },
      {
        "version": "Oracle GraalVM for JDK:17.0.7",
        "status": "affected"
      },
      {
        "version": "Oracle GraalVM for JDK:20.0.1",
        "status": "affected"
      }
    ]
  }
]

Source	Link
debian	www.debian.org/security/2023/dsa-5458
oracle	www.oracle.com/security-alerts/cpujul2023.html
debian	www.debian.org/security/2023/dsa-5478
security	www.security.netapp.com/advisory/ntap-20230725-0006/
lists	www.lists.debian.org/debian-lts-announce/2023/09/msg00018.html

21 Nov 2024 07:44Current

4.6Medium risk

Vulners AI Score4.6

CVSS 3.13.7

EPSS0.00104

SSVC