Lucene search
K

14454 matches found

Amazon
Amazon
added 2023/05/31 12:0 a.m.4 views

Important: java-11-openjdk

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficul...

7.4CVSS7.1AI score0.02474EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/05/25 5:25 p.m.32 views

K000134793: OpenJDK vulnerability CVE-2018-2952

Security Advisory Description Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Concurrency. Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit...

4.3CVSS5.8AI score0.04184EPSS
Exploits0Affected Software14
OSV
OSV
added 2023/05/19 11:5 a.m.5 views

OESA-2023-1283 openjdk-11 security update

The OpenJDK runtime environment. Security Fixes: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition:...

7.4CVSS8.4AI score0.01295EPSS
Exploits0References2
OSV
OSV
added 2023/05/19 11:5 a.m.4 views

OESA-2023-1288 openjdk-1.8.0 security update

The OpenJDK runtime environment 8. Security Fixes: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition:...

5.9CVSS7.9AI score0.01523EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/19 12:0 a.m.24 views

SUSE SLES15: java-1_8_0-openjdk / java-1_8_0-openjdk-accessibility / etc (SUSE-SU-2023:2242-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2242-1 advisory. - Updated to version jdk8u372 icedtea-3.27.0: - CVE-2023-21930: Fixed an issue in the JSSE component that could allow...

7.4CVSS6.5AI score0.02474EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2023/05/18 12:0 a.m.31 views

SUSE SLES12: java-1_8_0-openjdk / java-1_8_0-openjdk-demo / etc (SUSE-SU-2023:2238-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2238-1 advisory. - Updated to version jdk8u372 icedtea-3.27.0: - CVE-2023-21930: Fixed an issue in the JSSE component that could allow an attacker t...

7.4CVSS6.5AI score0.02474EPSS
Exploits1References22
F5 Networks
F5 Networks
added 2023/05/17 1:52 p.m.34 views

K000134636: Java vulnerabilities CVE-2018-2942 and CVE-2018-2938

Security Advisory Description CVE-2018-2942 Vulnerability in the Java SE component of Oracle Java SE subcomponent: Windows DLL. Supported versions that are affected are Java SE: 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

9CVSS7.7AI score0.04504EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/05/17 12:0 a.m.29 views

SUSE SLED15: java-11-openjdk / java-11-openjdk-demo / java-11-openjdk-devel / etc (SUSE-SU-2023:2222-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2222-1 advisory. Upgrade to upsteam tag jdk-11.0.19+7 April 2023 CPU: - CVE-2023-21930: Fixed AES support...

7.4CVSS6.5AI score0.02474EPSS
Exploits1References22
RedHat Linux
RedHat Linux
added 2023/05/16 6:17 p.m.6 views

OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable...

5.3CVSS7.4AI score0.03028EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/16 6:17 p.m.43 views

Moderate: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.3CVSS6.8AI score0.03028EPSS
Exploits0References4
Amazon
Amazon
added 2023/05/16 12:0 a.m.40 views

Important: java-1.8.0-openjdk

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficul...

7.4CVSS6.4AI score0.02474EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.91 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.3)

The version of AOS installed on the remote host is prior to 6.5.3. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.3 advisory. - net/netfilter/nftablesapi.c in the Linux kernel through 5.18.1 allows a local user able to create user/net namespaces to escala...

9.8CVSS7.9AI score0.59501EPSS
Exploits30References16
Veracode
Veracode
added 2023/05/12 11:30 p.m.31 views

Improper Input Validation

OpenJDK is vulnerable to Improper Input Validation. An attacker can create, delete or modify critical data or complete access to some of Oracle Java SE and Oracle GraalVM Enterprise Edition accessible data through TLS...

7.4CVSS6.6AI score0.01295EPSS
Exploits0References12Affected Software9
Veracode
Veracode
added 2023/05/12 11:30 p.m.25 views

Improper Input Validation

OpenJDK is vulnerable to Improper Input Validation. An attacker can update, insert or delete access to some of Oracle Java SE and Oracle GraalVM Enterprise Edition accessible data through multiple protocols...

3.7CVSS6.5AI score0.01208EPSS
Exploits0References12Affected Software9
Veracode
Veracode
added 2023/05/12 11:29 p.m.34 views

Improper Input Validation

OpenJDK is vulnerable to Improper Input Validation. An attacker can update, insert or delete access to some of Oracle Java SE and Oracle GraalVM Enterprise Edition accessible data through multiple protocols...

3.7CVSS6.5AI score0.01208EPSS
Exploits0References12Affected Software9
Veracode
Veracode
added 2023/05/12 6:8 p.m.48 views

Improper Input Validation

OpenJDK is vulnerable to Improper Input Validation. An attacker can update, insert or delete access to some of Oracle Java SE and Oracle GraalVM Enterprise Edition accessible data through multiple protocols...

3.7CVSS6.4AI score0.01036EPSS
Exploits0References12Affected Software9
CISA KEV Catalog
CISA KEV Catalog
added 2023/05/12 12:0 a.m.63 views

Oracle Java SE and JRockit Unspecified Vulnerability

Oracle Java SE and JRockit contains an unspecified vulnerability that allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Java Management Extensions JMX. This vulnerability can be exploited through sandboxed Java Web Start applications and sandbox...

10CVSS8.4AI score0.92334EPSS
In wildExploits1
BDU FSTEC
BDU FSTEC
added 2023/05/12 12:0 a.m.6 views

The vulnerability of the Libraries component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows a perpetrator to gain access to modify, add, or delete data.

The vulnerability of the Libraries component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine exists due to insufficient testing of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to modify, add, ...

3.7CVSS6.5AI score0.01208EPSS
Exploits0References9Affected Software10
VulnCheck KEV
VulnCheck KEV
added 2023/05/12 12:0 a.m.4 views

VulnCheck KEV: CVE-2016-3427

Oracle Java SE and JRockit contains an unspecified vulnerability that allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Java Management Extensions JMX. This vulnerability can be exploited through sandboxed Java Web Start applications and...

10CVSS6.8AI score0.92334EPSS
Exploits1References1
F5 Networks
F5 Networks
added 2023/05/11 7:57 p.m.28 views

K000134579: OpenJDK vulnerabilities CVE-2019-2818 and CVE-2019-2821

Security Advisory Description CVE-2019-2818 Vulnerability in the Java SE component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 11.0.3 and 12.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.3CVSS4.2AI score0.02016EPSS
Exploits0
Rows per page
Query Builder