CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

662 matches found

IBM Security Bulletins•added 2024/06/28 12:48 p.m.•25 views

Security Bulletin: An unspecified IBM SDK, Java Technology Edition vulnerability affects InfoSphere Data Replication

Summary An unspecified IBM SDK, Java Technology Edition vulnerability is addressed. Vulnerability Details CVEID:CVE-2023-22081 DESCRIPTION: An unspecified vulnerability in Java SE related to the JSSE component could allow a remote attacker to cause no confidentiality impact, no integrity impact,...

5.9CVSS5.7AI score0.00098EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/06/28 12:47 p.m.•21 views

Security Bulletin: An unspecified IBM SDK, Java Technology Edition vulnerability affects InfoSphere Data Replication

Summary An unspecified IBM SDK, Java Technology Edition vulnerability is addressed. Vulnerability Details CVEID:CVE-2023-22045 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause low confidentiality impacts. CVSS Base score: 3.7...

3.7CVSS4.8AI score0.00141EPSS

Exploits0Affected Software1

IBM AIX•added 2024/06/24 3:10 p.m.•38 views

Multiple vulnerabilities in IBM Java SDK affect AIX

IBM SECURITY ADVISORY First Issued: Mon Jun 24 15:10:30 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/javajun2024advisory.asc Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX...

7.5CVSS4.6AI score0.00199EPSS

Exploits0

IBM Security Bulletins•added 2024/06/23 12:21 p.m.•30 views

Security Bulletin: IBM Storage Insights is vulnerable to weaknesses related to IBM® SDK, Java™ Technology Edition

Summary Vulnerabilities in IBM® SDK, Java™ Technology Edition may affect IBM Storage Insights which could allow a remote attacker to cause high confidentiality impact and high integrity impact. CVE-2024-20952, CVE-2024-20918, CVE-2024-20921, CVE-2024-20919, CVE-2024-20926, CVE-2024-20945,...

7.5CVSS6.5AI score0.00319EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/06/17 2:45 p.m.•26 views

Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to a denial of service due to IBM Java SDK (CVE-2024-38264)

Summary IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to a denial of service due to IBM Java SDK, Java Technology Edition. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2023-38264 DESCRIPTION: The IBM SDK, Jav...

7.5CVSS5.8AI score0.00222EPSS

Exploits0Affected Software2

IBM Security Bulletins•added 2024/05/30 1:50 p.m.•40 views

Security Bulletin: CVE-2024-3933 affects IBM® SDK, Java™ Technology Edition

Summary CVE-2024-3933 affects IBM SDK, Java Technology Edition. An update has been released to address the vulnerability. Vulnerability Details CVEID:CVE-2024-3933 DESCRIPTION: Eclipse Openj9 could allow a local authenticated attacker to bypass security restrictions, caused by the failure to...

7.3CVSS5.8AI score0.00068EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/05/28 7:41 p.m.•40 views

Security Bulletin: Vulnerabilities in IBM Java included with IBM Tivoli Monitoring.

Summary Vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring ITM components. CVEs: CVE-2023-38264, CVE-2024-21011, CVE-2024-21085 and CVE-2024-21094 Vulnerability Details CVEID:CVE-2024-21094 DESCRIPTION: An unspecified vulnerability in Ja...

7.5CVSS5AI score0.00417EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/05/17 7:28 p.m.•94 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Business Service Manager (CVE-2023-22081, CVE-2023-22067, CVE-2023-5676)

Summary IBM® SDK, Java™ Technology Edition is shipped as a component of IBM Tivoli Business Service Manager. Information about security vulnerabilities affecting IBM® SDK, Java™ Technology Edition has been published in a security bulletin. Vulnerability Details CVEID:CVE-2023-22081 DESCRIPTION: A...

5.9CVSS6.3AI score0.00172EPSS

Exploits0Affected Software1

OSV•added 2024/05/14 1:21 p.m.•0 views

CVE-2023-38264

The IBM SDK, Java Technology Edition's Object Request Broker ORB 7.1.0.0 through 7.1.5.21 and 8.0.0.0 through 8.0.8.21 is vulnerable to a denial of service attack in some circumstances due to improper enforcement of the JEP 290 MaxRef and MaxDepth deserialization filters. IBM X-Force ID: 260578...

7.5CVSS5.8AI score0.00199EPSS

Exploits0References2

SUSE CVE•added 2024/05/14 3:36 a.m.•3 views

SUSE CVE-2023-38264

5.9CVSS6.6AI score0.00199EPSS

Exploits0References5

IBM Security Bulletins•added 2024/05/13 2:27 p.m.•34 views

Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server and IBM WebSphere Application Server Liberty due to April 2024 CPU

Summary There are multiple vulnerabilities in the IBM® SDK, Java™ Technology Edition that is shipped with IBM WebSphere Application Server and IBM WebSphere Application Server Liberty. The CVEs listed in this document might affect some configurations of IBM WebSphere Application Server traditiona...

7.5CVSS5.2AI score0.00339EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/05/13 11:52 a.m.•32 views

Security Bulletin: Multiple vulnerabilities exists in IBM® SDK, Java™ Technology Edition affect IBM Tivoli Network Configuration Manager.

Summary Multiple vulnerabilities exists in IBM® SDK Java™ Technology Edition, Version 8, which is used by IBM Tivoli Network Configuration Manager IP Edition v6.4.2. CVE-2024-20952, CVE-2024-20918, CVE-2024-20921, CVE-2024-20919, CVE-2024-20926, CVE-2024-20945, CVE-2023-33850 Vulnerability Detail...

7.5CVSS6.9AI score0.00319EPSS

Exploits0Affected Software1

Vulnrichment•added 2024/05/10 5:21 p.m.•22 views

CVE-2023-38264 IBM SDK, Java Technology Edition denial of service

5.9CVSS6.3AI score0.00199EPSS

Exploits0References2

IBM Security Bulletins•added 2024/05/10 3:4 p.m.•30 views

Security Bulletin: IBM Security Guardium is affected by an IBM SDK, Java Technology Edition Quarterly CPU - Oct 2023 vulnerability (CVE-2023-22081, CVE-2023-22067, CVE-2023-5676)

Summary IBM Security Guardium has addressed these vulnerabilities with updates. Vulnerability Details CVEID:CVE-2023-22081 DESCRIPTION: An unspecified vulnerability in Java SE related to the JSSE component could allow a remote attacker to cause no confidentiality impact, no integrity impact, and...

5.9CVSS6.2AI score0.00172EPSS

Exploits0Affected Software1

RedhatCVE•added 2024/05/10 8:27 a.m.•47 views

CVE-2023-38264

The IBM SDK, Java Technology Edition's Object Request Broker ORB is vulnerable to a denial of service attack in some circumstances due to improper enforcement of the JEP 290 MaxRef and MaxDepth deserialization filters...

5.9CVSS7AI score0.00199EPSS

Exploits0References6

Positive Technologies•added 2024/05/10 12:0 a.m.•2 views

PT-2024-12693 · Ibm +3 · Ibm Sdk +4

Name of the Vulnerable Software and Affected Versions: IBM SDK, Java Technology Edition versions 7.1.0.0 through 7.1.5.21 IBM SDK, Java Technology Edition versions 8.0.0.0 through 8.0.8.21 Description: The issue is related to a denial of service attack due to improper enforcement of the JEP 290...

7.5CVSS5.6AI score0.00669EPSS

Exploits0References50

CNNVD•added 2024/05/10 12:0 a.m.•1 views

IBM SDK, Java Technology Edition 代码问题漏洞

IBM SDK, Java Technology Edition is a software development kit for Java application development from International Business Machines IBM. A code issue vulnerability exists in IBM SDK, Java Technology Edition that stems from the fact that under certain circumstances, the JEP 290 MaxRef and MaxDept...

7.5CVSS6.8AI score0.00199EPSS

Exploits0References4

IBM Security Bulletins•added 2024/05/09 7:33 p.m.•69 views

Security Bulletin: Multiple vulnerabilities affect IBM® SDK, Java™ Technology Edition

Summary This bulletin for IBM SDK, Java Technology Edition covers all applicable Java SE CVEs published by Oracle as part of their April 2024 Critical Patch Update, plus CVE-2023-38264. For more information please refer to Oracle's April 2024 CPU Advisory and the X-Force database entries referenc...

5.9CVSS4.8AI score0.00417EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/04/26 7:53 p.m.•44 views

Security Bulletin: IBM MQ is affected by multiple vulnerabilities in the IBM Runtime Environment, Java Technology Edition (CVE-2024-20952 and CVE-2023-33850)

Summary Multiple issues were identified with IBM Runtime Environment, Java Technology Edition, Version 8 which is shipped with IBM MQ. CVE-2023-33850 covers the GSKIT-Crypto ICC package used by IBM Runtime Environment, Java Technology Edition. This is separate to the GSKit-SSL package which is...

7.5CVSS7.5AI score0.00319EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/04/26 2:47 p.m.•52 views

Security Bulletin: IBM MQ Appliance is affected by multiple vulnerabilities in the IBM Runtime Environment, Java Technology Edition (CVE-2024-20952 and CVE-2023-33850)

Summary Multiple issues were identified with IBM Runtime Environment, Java Technology Edition, Version 8 which is shipped in IBM MQ Appliance. Vulnerability Details CVEID:CVE-2024-20952 DESCRIPTION: An unspecified vulnerability in Java SE related to the Security component could allow a remote...

7.5CVSS7.5AI score0.00319EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by