Lucene search
K

191 matches found

RedHat Linux
RedHat Linux
added 2020/12/16 3:21 p.m.3 views

OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.1AI score0.02245EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/12/16 3:21 p.m.4 views

OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.3AI score0.0217EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/11/10 12:0 a.m.4 views

The vulnerability of the Hotspot component in Java SE and Java SE Embedded software allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.

The vulnerability of the Hotspot component in Java SE and Java SE Embedded software relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information or to modify, add, or delete data...

4.2CVSS6.5AI score0.02203EPSS
Exploits0References9Affected Software8
BDU FSTEC
BDU FSTEC
added 2020/11/10 12:0 a.m.4 views

The vulnerability of the Libraries component in Java SE and Java SE Embedded software platforms allows a perpetrator to gain access to modify, add, or delete data.

The vulnerability of the Libraries component in Java SE and Java SE Embedded software platforms is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to modify, add, or delete data...

3.7CVSS6.2AI score0.02245EPSS
Exploits0References9Affected Software8
RedHat Linux
RedHat Linux
added 2020/10/26 9:12 p.m.4 views

OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.3AI score0.0217EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/10/26 8:2 p.m.5 views

OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.1AI score0.02245EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/10/22 7:41 p.m.4 views

OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.3AI score0.0217EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/10/22 4:13 p.m.5 views

OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.1AI score0.02245EPSS
Exploits0References4
OSV
OSV
added 2020/10/21 3:15 p.m.2 views

DEBIAN-CVE-2020-14792

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.2CVSS5.9AI score0.02203EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.3 views

DEBIAN-CVE-2020-14782

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

3.7CVSS5.7AI score0.02245EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/10/20 12:0 a.m.5 views

PT-2020-4501

Name of the Vulnerable Software and Affected Versions Java SE versions 7u271, 8u261, 11.0.8, and 15 Java SE Embedded version 8u261 Description The issue is related to insufficient input validation in the JNDI component of Java SE and Java SE Embedded. It allows an unauthenticated attacker with...

8.3CVSS7.2AI score0.37618EPSS
Exploits0References283
Positive Technologies
Positive Technologies
added 2020/10/20 12:0 a.m.5 views

PT-2020-4504

Name of the Vulnerable Software and Affected Versions Java SE versions 7u271, 8u261, 11.0.8, and 15 Java SE Embedded version 8u261 Description A difficult to exploit vulnerability allows an unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded...

7.4CVSS7.3AI score0.37618EPSS
Exploits0References284
RedHat Linux
RedHat Linux
added 2020/08/10 3:17 p.m.4 views

OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TLS to...

4.3CVSS6.7AI score0.03284EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/08/10 3:17 p.m.4 views

OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols ...

4.3CVSS6.7AI score0.04044EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/07/22 12:43 p.m.6 views

OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

7.4CVSS7.4AI score0.03864EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/07/22 12:35 p.m.3 views

OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.8CVSS7.3AI score0.03022EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/07/16 4:38 p.m.1 views

OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.8CVSS7.3AI score0.03022EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/06/02 12:0 a.m.5 views

The vulnerability of the Serialization component in Java SE and Java SE Embedded software platforms allows a attacker to trigger a service failure.

The vulnerability of the Serialization component in Java SE and Java SE Embedded software platforms is related to deficiencies in access control. Exploiting this vulnerability allows an attacker to cause service failures through various network protocols...

4.3CVSS6.4AI score0.04211EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2020/06/02 12:0 a.m.2 views

The vulnerability of the Libraries component in Java SE and Java SE Embedded software platforms allows a perpetrator to gain full control over the application.

The vulnerability of the Libraries component in Java SE and Java SE Embedded software platforms is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain full control over the application by using various network protoco...

8.3CVSS7.4AI score0.0623EPSS
Exploits0References3Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/06/02 12:0 a.m.5 views

The vulnerability of the Scripting component in Java SE and Java SE Embedded software platforms allows attackers to trigger a service failure.

The vulnerability of the Scripting component in Java SE and Java SE Embedded programming platforms is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to cause service failures through various network protocols...

4.3CVSS6.4AI score0.03899EPSS
Exploits0References10Affected Software6
Rows per page
Query Builder