CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1357 matches found

RedHat Linux•added 2018/04/23 10:53 p.m.•2 views

OpenJDK: unbounded memory allocation during deserialization in Container (AWT, 8189989)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS7.3AI score0.00179EPSS

Exploits0References4

RedHat Linux•added 2018/04/23 10:53 p.m.•2 views

OpenJDK: unbounded memory allocation during deserialization in NamedNodeMapImpl (JAXP, 8189993)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JAXP. Supported versions that are affected are Java SE: 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker with network...

5.3CVSS7.1AI score0.00123EPSS

Exploits0References4

RedHat Linux•added 2018/04/23 10:53 p.m.•2 views

OpenJDK: incorrect handling of Reference clones can lead to sandbox bypass (Hotspot, 8192025)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

8.3CVSS7.4AI score0.00454EPSS

Exploits0References4

RedHat Linux•added 2018/04/23 10:38 p.m.•4 views

OpenJDK: incorrect merging of sections in the JAR manifest (Security, 8189969)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

3.1CVSS7.4AI score0.00239EPSS

Exploits0References4

RedHat Linux•added 2018/04/23 5:15 p.m.•3 views

OpenJDK: unbounded memory allocation during deserialization in TabularDataSupport (JMX, 8189985)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JMX. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS7.3AI score0.00179EPSS

Exploits0References4

RedHat Linux•added 2018/04/23 5:15 p.m.•3 views

OpenJDK: unbounded memory allocation during deserialization in PriorityBlockingQueue (Concurrency, 8189981)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Concurrency. Supported versions that are affected are Java SE: 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS7.3AI score0.00293EPSS

Exploits0References4

RedHat Linux•added 2018/04/19 6:6 p.m.•4 views

OpenJDK: unbounded memory allocation during deserialization in NamedNodeMapImpl (JAXP, 8189993)

5.3CVSS7.1AI score0.00123EPSS

Exploits0References4

OSV•added 2018/04/19 2:29 a.m.•0 views

CVE-2018-2815

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attack...

5.3CVSS6.7AI score0.00693EPSS

Exploits0References22

NVD•added 2018/04/19 2:29 a.m.•15 views

CVE-2018-2814

8.3CVSS8.2AI score0.00454EPSS

Exploits0References22

NVD•added 2018/04/19 2:29 a.m.•13 views

CVE-2018-2783

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with...

7.4CVSS6.9AI score0.00414EPSS

Exploits0References16

OSV•added 2018/04/19 2:29 a.m.•1 views

CVE-2018-2798

5.3CVSS5.8AI score

Exploits0References28

Prion•added 2018/04/19 2:29 a.m.•25 views

Design/Logic Flaw

5CVSS4.8AI score0.00179EPSS

Exploits0References28Affected Software13

Prion•added 2018/04/19 2:29 a.m.•24 views

Design/Logic Flaw

5.8CVSS6.7AI score0.00414EPSS

Exploits0References16Affected Software8

Prion•added 2018/04/19 2:29 a.m.•17 views

Design/Logic Flaw

5CVSS4.8AI score0.00293EPSS

Exploits0References26Affected Software13

Prion•added 2018/04/19 2:29 a.m.•19 views

Design/Logic Flaw

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker wi...

5CVSS4.8AI score0.00179EPSS

Exploits0References28Affected Software13

Prion•added 2018/04/19 2:29 a.m.•20 views

Design/Logic Flaw

5CVSS4.8AI score0.00123EPSS

Exploits0References29Affected Software14

Prion•added 2018/04/19 2:29 a.m.•15 views

Design/Logic Flaw

5CVSS4.8AI score0.00179EPSS

Exploits0References28Affected Software13

Prion•added 2018/04/19 2:29 a.m.•11 views

Design/Logic Flaw

5.1CVSS8AI score0.00454EPSS

Exploits0References22Affected Software11

Prion•added 2018/04/19 2:29 a.m.•18 views

Design/Logic Flaw

5CVSS4.8AI score0.00693EPSS

Exploits0References22Affected Software12

CVE•added 2018/04/19 2:0 a.m.•291 views

CVE-2018-2798

CVE-2018-2798 affects Oracle Java/OpenJDK with the AWT component (and related JRE/JDK bundles). The connected advisories describe an issue: unbounded memory allocation during deserialization in the Container (AWT) path, enabling potentially unauthenticated network-accessed exploitation. Public di...

5.3CVSS5AI score0.00179EPSS

Exploits0References28Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by