CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

550 matches found

CNVD•added 2015/10/22 12:0 a.m.•2 views

Unspecified Vulnerability in Oracle Java SE (CNVD-2015-06915)

Oracle Java SE is the standard version of the Java platform is a Java2 platform to provide users with a program development environment. An unspecified vulnerability exists in Oracle Java SE 6u101, 7u85,8u60,Java SE Embedded 8u51. Allows remote attackers to affect confidentiality via vectors...

5CVSS8.9AI score0.02698EPSS

Exploits0References1

OSV•added 2015/08/27 12:0 a.m.•42 views

DLA-303-1 openjdk-6 - security update

Bulletin has no description...

10CVSS6.9AI score0.92346EPSS

Exploits0

Tenable Nessus•added 2015/08/24 12:0 a.m.•223 views

Debian DSA-3339-1 : openjdk-6 - security update (Bar Mitzvah) (Logjam)

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, breakouts of the Java sandbox, information disclosure, denial of service or insecure cryptography. %NASLMINLEVEL 70300 C Tenable Network Security,...

10CVSS7.4AI score0.92346EPSS

Exploits0References17

Debian•added 2015/08/19 8:19 p.m.•52 views

[SECURITY] [DSA 3339-1] openjdk-6 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3339-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 19, 2015 https://www.debian.org/security/faq -...

10CVSS6.2AI score0.92346EPSS

Exploits0

Debian•added 2015/07/25 10:13 a.m.•60 views

[SECURITY] [DSA 3316-1] openjdk-7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3316-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 25, 2015 https://www.debian.org/security/faq -...

10CVSS6.8AI score0.92346EPSS

Exploits0

RedHat Linux•added 2015/07/23 7:20 p.m.•3 views

JDK: unspecified vulnerability fixed in 6u101, 7u85 and 8u51 (2D)

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...

10CVSS6.7AI score0.07271EPSS

Exploits0References5

RedHat Linux•added 2015/07/22 7:56 p.m.•1 views

OpenJDK: insufficient context checks during object deserialization (Libraries, 8076405)

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2015-2590...

10CVSS6.7AI score0.09706EPSS

Exploits0References5

CNVD•added 2015/07/20 12:0 a.m.•2 views

Unspecified Vulnerability in Oracle Java SE 2D Component

Oracle Java SE is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in the 2D subcomponent of Oracle Java SE, which can be exploited by a remote attacker to construct a malicious WEB page and trick...

5CVSS9AI score0.01738EPSS

Exploits0References1

RedHat Linux•added 2015/07/17 8:4 a.m.•4 views

JDK: unspecified vulnerability fixed in 7u85 and 8u51 (Deployment)

Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...

9.3CVSS6.7AI score0.0595EPSS

Exploits0References5

OSV•added 2015/07/16 12:0 a.m.•0 views

UBUNTU-CVE-2015-4760

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...

10CVSS6.1AI score0.09686EPSS

Exploits0References6

RedHat Linux•added 2015/07/15 12:37 p.m.•2 views

OpenJDK: name for reverse DNS lookup used in certificate identity check (JSSE, 8067694)

A flaw was found in the way the JSSE component in OpenJDK performed X.509 certificate identity verification when establishing a TLS/SSL connection to a host identified by an IP address. In certain cases, the certificate was accepted as valid if it was issued for a host name to which the IP addres...

2.6CVSS6.6AI score0.02698EPSS

Exploits0References5

RedHat Linux•added 2015/07/15 12:37 p.m.•4 views

OpenJDK: improper permission checks in MBeanServerInvocationHandler (JMX, 8076397)

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; Java SE Embedded 7u75; and Java SE Embedded 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX...

10CVSS6.8AI score0.0797EPSS

Exploits0References5

RedHat Linux•added 2015/06/11 1:21 p.m.•2 views

JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459...

10CVSS5.8AI score0.10713EPSS

Exploits0References5

seebug.org•added 2015/05/20 12:0 a.m.•39 views

JDWP 代码执行漏洞

JPDAJava Platform Debugger Architecture 是 Java 平台调试体系结构的缩写，通过 JPDA 提供的 API，开发人员可以方便灵活的搭建 Java 调试应用程序。JPDA 主要由三个部分组成：Java虚拟机工具接口（JVMTI），Java 调试线协议（JDWP），以及 Java 调试接口（JDI）。JDWP协议可以支持远程调试，当次接口未授权访问时，可以执行Java代码，造成代码执行，获取服务器权限。服务端监听80端口记录访问：使用jdwp-shellifier，执行系统命令：python jdwp-shellifier.py -t...

7.1AI score

Exploits0

RedHat Linux•added 2015/05/13 1:33 p.m.•2 views

JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)

10CVSS5.8AI score0.10713EPSS

Exploits0References5

Debian•added 2015/04/24 6:41 p.m.•38 views

[SECURITY] [DSA 3235-1] openjdk-7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3235-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 24, 2015 http://www.debian.org/security/faq -...

10CVSS6AI score0.09204EPSS

Exploits0

Debian•added 2015/04/24 6:39 p.m.•52 views

[SECURITY] [DSA 3234-1] openjdk-6 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3234-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 24, 2015 http://www.debian.org/security/faq -...

10CVSS6AI score0.09204EPSS

Exploits0

RedHat Linux•added 2015/04/20 2:27 p.m.•3 views

JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)

Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...

7.6CVSS5.8AI score0.07978EPSS

Exploits0References5

RedHat Linux•added 2015/04/17 10:28 a.m.•2 views

JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)

Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492...

9.3CVSS5.8AI score0.02185EPSS

Exploits0References5

CNVD•added 2015/04/17 12:0 a.m.•2 views

Oracle Java SE has a remote vulnerability (CNVD-2015-02506)

Java SE is short for Java Platform Standard Edition, based on the JDK and JRE, for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. A remote vulnerability exists in Oracle Java SE. Allows an attacker to exploit this vulnerability t...

10CVSS6.8AI score0.10713EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by