CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1357 matches found

Prion•added 2019/04/23 7:32 p.m.•31 views

Design/Logic Flaw

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: RMI. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS5.6AI score0.01264EPSS

Exploits0References37Affected Software17

CVE•added 2019/04/23 6:16 p.m.•811 views

CVE-2019-2684

CVE-2019-2684 concerns Oracle Java SE and Java SE Embedded, specifically the RMI component. The connected Chainguard entry shows affected packages for OpenJDK builds (openjdk-21/openj9, openjdk-8/openj9, openjdk-11/openj9, openjdk-17/openj9). The initial description identifies affected Oracle Jav...

5.9CVSS5.7AI score0.01264EPSS

Exploits0References37Affected Software2

AlpineLinux•added 2019/04/23 6:16 p.m.•38 views

CVE-2019-2602

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

7.5CVSS7.1AI score0.00233EPSS

Exploits0

RedHat Linux•added 2019/04/22 4:10 p.m.•3 views

OpenJDK: Slow conversion of BigDecimal to long (Libraries, 8211936)

7.5CVSS7.3AI score0.00233EPSS

Exploits0References4

CNVD•added 2019/04/18 12:0 a.m.•2 views

Oracle Java SE and Java SE Embedded Access Control Error Vulnerability (CNVD-2019-26750)

Oracle Java SE and Oracle Java SE Embedded are both products of Oracle Corporation.Oracle Java SE is a Java platform for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments.Oracle Java SE Embedded is a Java platform that targets Java...

5.9CVSS8.3AI score0.01264EPSS

Exploits0References1

RedHat Linux•added 2019/04/17 3:44 p.m.•4 views

OpenJDK: Slow conversion of BigDecimal to long (Libraries, 8211936)

7.5CVSS7.3AI score0.00233EPSS

Exploits0References4

IBM Security Bulletins•added 2019/04/12 7:10 a.m.•30 views

Security Bulletin: Multiple vulnerabilities in the IBM SDK, Java Technology Edition affect IBM Performance Management products

Summary Multiple vulnerabilities in the Oracle Java SE and the Java SE Embedded impact the IBM SDK, Java Technology Edition. Vulnerability Details CVEID: CVE-2018-1890 DESCRIPTION: IBM SDK, Java Technology Edition Version 8 on the AIX platform uses absolute RPATHs which may facilitate code...

9.8CVSS0.7AI score0.02569EPSS

Exploits2Affected Software1

IBM Security Bulletins•added 2019/04/12 7:10 a.m.•27 views

Security Bulletin: Multiple vulnerabilities in the IBM SDK, Java Technology Edition affect IBM Performance Management products

Summary Multiple vulnerabilities in the Oracle Java SE and the Java SE Embedded impact the IBM SDK, Java Technology Edition. Vulnerability Details CVEID: CVE-2018-3139 DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded Networking component could...

8.3CVSS0.9AI score0.03717EPSS

Exploits2Affected Software1

RedHat Linux•added 2019/03/08 9:21 p.m.•2 views

OpenJDK: memory disclosure in FileChannelImpl (Libraries, 8206290)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

3.1CVSS7.4AI score0.00326EPSS

Exploits0References4

RedHat Linux•added 2019/03/07 3:59 p.m.•2 views

OpenJDK: memory disclosure in FileChannelImpl (Libraries, 8206290)

3.1CVSS7.4AI score0.00326EPSS

Exploits0References4

UbuntuCve•added 2019/01/16 7:30 p.m.•17 views

CVE-2019-2426

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

4.3CVSS6.8AI score0.00533EPSS

Exploits0References2

Veracode•added 2019/01/15 9:23 a.m.•28 views

Authorization Bypass

java-1.8.0-ibm is vulnerable to authorization bypass attacks. The vulnerability exists as a vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152...

7.4CVSS7.1AI score0.00414EPSS

Exploits0References17Affected Software2

Veracode•added 2019/01/15 9:21 a.m.•44 views

Information Disclosure

java-1.7.0-openjdk is vulnerable to information disclosure attacks. The vulnerability exists as a vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131...

3.1CVSS4.8AI score0.00264EPSS

Exploits0References13Affected Software2

RedHat Linux•added 2018/12/18 3:51 p.m.•3 views

OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...

6.8CVSS7.3AI score0.00124EPSS

Exploits0References4

RedHat Linux•added 2018/12/18 3:51 p.m.•4 views

OpenJDK: Improper field access checks (Hotspot, 8199226)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

8.3CVSS7.4AI score0.006EPSS

Exploits0References4

Tenable Nessus•added 2018/12/10 12:0 a.m.•40 views

Amazon Linux 2 : java-1.7.0-openjdk (ALAS-2018-1111)

8.3CVSS6.2AI score0.00727EPSS

Exploits2References7

Tenable Nessus•added 2018/12/07 12:0 a.m.•43 views

Amazon Linux AMI : java-1.7.0-openjdk (ALAS-2018-1111)

8.3CVSS6.2AI score0.00727EPSS

Exploits2References7

Amazon•added 2018/12/06 12:0 a.m.•116 views

Critical: java-1.7.0-openjdk

Issue Overview: Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticat...

8.3CVSS7AI score0.00727EPSS

Exploits2

Amazon•added 2018/12/06 12:0 a.m.•48 views

Critical: java-1.7.0-openjdk

Issue Overview: Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access...

8.3CVSS7AI score0.00727EPSS

Exploits2

RedHat Linux•added 2018/12/05 3:53 p.m.•7 views

OpenJDK: Infinite loop in RIFF format reader (Sound, 8205361)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Sound. Supported versions that are affected are Java SE: 6u201, 7u191 and 8u182; Java SE Embedded: 8u181; JRockit: R28.3.19. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS7.3AI score0.00261EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by