CVE-2022-21597

🗓️ 18 Oct 2022 00:00:00Reported by oracleType

Vulnerability in Oracle GraalVM Enterprise Edition allows unauthorized read acces

Reporter	Title	Published	Views	Family All 17
IBM Security Bulletins	Security Bulletin: IBM Security Verify Password Synchronization Plug-in for Windows AD is affected by multiple vulnerabilities	13 Jun 202508:19	–	ibm
ATTACKERKB	CVE-2022-21597	18 Oct 202221:15	–	attackerkb
CNNVD	Oracle GraalVM 安全漏洞	18 Oct 202200:00	–	cnnvd
CVE	CVE-2022-21597	18 Oct 202200:00	–	cve
EUVD	EUVD-2022-26821	3 Oct 202520:07	–	euvd
F5 Networks	K21519731: Multiple Oracle Java SE vulnerabilities CVE-2022-21597, CVE-2022-21634	21 Feb 202318:33	–	f5
NCSC	Vulnerabilities fixed in Oracle Java SE	19 Oct 202200:00	–	ncsc
NVD	CVE-2022-21597	18 Oct 202221:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - January 2023	17 Jan 202300:00	–	oracle
Oracle	Oracle Critical Patch Update Advisory - October 2022	18 Oct 202200:00	–	oracle

[
  {
    "vendor": "Oracle Corporation",
    "product": "GraalVM Enterprise Edition",
    "versions": [
      {
        "version": "Oracle GraalVM Enterprise Edition:20.3.7",
        "status": "affected"
      },
      {
        "version": "Oracle GraalVM Enterprise Edition:21.3.3",
        "status": "affected"
      },
      {
        "version": "Oracle GraalVM Enterprise Edition:22.2.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpuoct2022.html

18 Oct 2022 00:00Current

4.9Medium risk

Vulners AI Score4.9

CVSS 3.15.3

EPSS0.0058