CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
AI Score
Confidence
Low
A vulnerability in the Concurrency component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK, and Oracle Java SE software platform is related to insufficient input validation.
for JDK and Oracle Java SE software platform is related to insufficient input validation.
Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service
Vulnerability in the Hotspot component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK, and Oracle Java SE software platform is due to insufficient input validation.
JDK and Oracle Java SE software platform is associated with insufficient protection of service data.
Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized
access to read, modify, or delete data
Vulnerability in the Hotspot component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for
JDK and Oracle Java SE software platform is related to the disclosure of sensitive information to an unauthorized person.
to an unauthorized person. Exploitation of the vulnerability could allow an attacker acting remotely to,
gain unauthorized access to read, modify, or delete data
Vulnerability in the 2D virtual machine component of Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK and the Oracle Java SE software platform.
Oracle Java SE software platform is related to insufficient validation of input data. Exploitation
of the vulnerability could allow an attacker acting remotely to gain unauthorized access to
Read, modify, or delete data
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
redos | 7.3 | x86_64 | java-1.8.0-openjdk-portable | < 1.8.0.422.b06-2 | UNKNOWN |