5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
6.1 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
49.1%
01/18/2022
Warning
Multiple vulnerabilities were found in Oracle Java and GraalVM. Malicious users can exploit this vulnerability to cause denial of service.
Oracle Java SE 11.x earlier than 11.0.14, 17.x earlier than 17.02
Oracle GraalVM Enterprise Edition 20.x earlier than 20.3.5, 21.x earlier than 21.3.1
Update to the latest version
Download Java
Oracle Critical Patch Update Advisory – January 2022
DoS
CVE-2022-213665.3High
CVE-2022-212775.3High
CVE-2022-212835.3High
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21277
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21283
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21366
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Oracle-Java-JRE-1.8.x/
www.oracle.com/java/
www.oracle.com/security-alerts/cpujan2022.html#AppendixJAVA
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
6.1 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
49.1%