Lucene search
K

170 matches found

Symantec
Symantec
added 2019/10/15 12:0 a.m.62 views

Oracle Java SE/Java SE Embedded CVE-2019-2962 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the '2D' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13; Java SE...

6.2AI score0.03533EPSS
Exploits0References1Affected Software2
Symantec
Symantec
added 2019/10/15 12:0 a.m.76 views

Oracle Java SE/Java SE Embedded CVE-2019-2988 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the '2D' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13; Java SE...

6.2AI score0.03284EPSS
Exploits0References1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2019/08/30 7:48 a.m.33 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Content Collector for SAP Applications

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Java™ Version 6 and Java™ Version 7 that is used by Content Collector for SAP Applications. Vulnerability Details CVEID: CVE-2017-3289 DESCRIPTION: An unspecified vulnerability in Oracle Java SE and Java SE Embedded...

9.6CVSS1AI score0.95707EPSS
Exploits13Affected Software1
OSV
OSV
added 2019/06/21 2:10 p.m.10 views

SUSE-SU-2019:1644-1 Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: Update to Java 8.0 Service Refresh 5 Fix Pack 35. Security issues fixed: - CVE-2019-10245: Fixed Java bytecode verifier issue causing crashes bsc1134718. - CVE-2019-2698: Fixed out of bounds access flaw in the 2D component bsc1132729. -...

8.1CVSS6.8AI score0.37618EPSS
Exploits2References11
OPENSUSE Linux
OPENSUSE Linux
added 2019/06/03 12:0 a.m.166 views

Security update for java-1_7_0-openjdk (moderate)

openSUSE Security Update: Security update for java-170-openjdk Announcement ID: openSUSE-SU-2019:1500-1 Rating: moderate References: 1122293 1122299 1132728 1132729 1132732 1134297 Cross-References: CVE-2018-11212 CVE-2019-2422 CVE-2019-2426 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 Affected...

8.1CVSS7.7AI score0.37618EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2019/05/22 12:0 a.m.53 views

SUSE SLES15 Security Update : java-1_8_0-ibm (SUSE-SU-2019:1308-1)

This update for java-180-ibm fixes the following issues : Update to Java 8.0 Service Refresh 5 Fix Pack 35. Security issues fixed : CVE-2019-10245: Fixed Java bytecode verifier issue causing crashes bsc1134718. CVE-2019-2698: Fixed out of bounds access flaw in the 2D component bsc1132729...

8.1CVSS6.8AI score0.37618EPSS
Exploits2References16
Tenable Nessus
Tenable Nessus
added 2019/05/22 12:0 a.m.51 views

SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2019:14059-1)

This update for java-171-ibm fixes the following issues : Update to Java 7.1 Service Refresh 4 Fix Pack 45. Security issues fixed : CVE-2019-10245: Fixed Java bytecode verifier issue causing crashes bsc1134718. CVE-2019-2698: Fixed out of bounds access flaw in the 2D component bsc1132729...

8.1CVSS6.8AI score0.37618EPSS
Exploits2References16
Veracode
Veracode
added 2019/05/02 5:40 a.m.35 views

Sandbox Restrictions Bypass

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Multiple flaws were discovered in the 2D, CORBA, JMX, Libraries and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Ja...

9.8CVSS4.6AI score0.9986EPSS
Exploits1References12Affected Software1
Veracode
Veracode
added 2019/05/02 4:53 a.m.38 views

Arbitrary Code Execution

openjdk is vulnerable to arbitrary code execution. It was discovered that the 2D component did not properly reject certain malformed images. Specially-crafted raster parameters could cause Java Virtual Machine memory corruption and, possibly, lead to arbitrary code execution with virtual machine...

10CVSS9.6AI score0.86151EPSS
Exploits10References35Affected Software3
Veracode
Veracode
added 2019/05/02 4:45 a.m.28 views

Sandbox Restrictions Bypass

OpenJDK 7 Java Runtime Environment and Software Development Kit is susceptible to sandbox restriction bypass. Due to the flaws in ImagingLib and the image attribute, channel, layout and raster processing in the 2D component, it does not prevent an untrusted Java application or applet to trigger...

10CVSS6.1AI score0.22988EPSS
Exploits4References35Affected Software3
Veracode
Veracode
added 2019/05/02 4:45 a.m.27 views

Sandbox Restrictions Bypass

OpenJDK 7 Java Runtime Environment and Software Development Kit is susceptible to sandbox restriction bypass. Due to the flaws in ImagingLib and the image attribute, channel, layout and raster processing in the 2D component, it does not prevent an untrusted Java application or applet to trigger...

10CVSS6.1AI score0.10179EPSS
Exploits0References36Affected Software3
Veracode
Veracode
added 2019/05/02 4:45 a.m.44 views

Sandbox Restrictions Bypass

OpenJDK 7 Java Runtime Environment and Software Development Kit is susceptible to sandbox restriction bypass. Due to the flaws in ImagingLib and the image attribute, channel, layout and raster processing in the 2D component, it does not prevent an untrusted Java application or applet to trigger...

7.5CVSS6AI score0.06746EPSS
Exploits0References26Affected Software2
Veracode
Veracode
added 2019/05/02 4:45 a.m.18 views

Sandbox Restrictions Bypass

OpenJDK 7 Java Runtime Environment and Software Development Kit is susceptible to sandbox restriction bypass. Due to the flaws in ImagingLib and the image attribute, channel, layout and raster processing in the 2D component, it does not prevent an untrusted Java application or applet to trigger...

5CVSS6.1AI score0.04507EPSS
Exploits0References34Affected Software3
Veracode
Veracode
added 2019/05/02 4:45 a.m.31 views

Sandbox Restrictions Bypass

OpenJDK 7 Java Runtime Environment and Software Development Kit is susceptible to sandbox restriction bypass. Due to the flaws in ImagingLib and the image attribute, channel, layout and raster processing in the 2D component, it does not prevent an untrusted Java application or applet to trigger...

9.3CVSS8.8AI score0.70248EPSS
Exploits9References20Affected Software1
NVD
NVD
added 2019/04/23 7:32 p.m.24 views

CVE-2019-2697

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS7.6AI score0.11466EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2019/04/23 6:16 p.m.17 views

CVE-2019-2697

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

6.7AI score0.11466EPSS
Exploits1References10
Debian CVE
Debian CVE
added 2019/04/23 6:16 p.m.33 views

CVE-2019-2698

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS6.6AI score0.12013EPSS
Exploits1
Debian CVE
Debian CVE
added 2019/04/23 6:16 p.m.28 views

CVE-2019-2697

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS6.5AI score0.11466EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2019/04/23 6:16 p.m.50 views

CVE-2019-2698

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS7.9AI score0.12013EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2019/04/23 12:0 a.m.42 views

CVE-2019-2697

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS6.8AI score0.11466EPSS
Exploits1References2
Rows per page
Query Builder