CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

496 matches found

Amazon•added 2024/01/18 12:0 a.m.•11 views

Important: java-21-amazon-corretto

Issue Overview: A vulnerability that allows an attacker to execute arbitrary java code from the javascript engine even though the option "--no-java" was set. CVE-2024-20918 With carefully crafted custom bytecodes, arbitrary unverified bytecodes could be executed. CVE-2024-20919 Loop optimizations...

7.4CVSS8.1AI score0.00344EPSS

Exploits0

Amazon•added 2024/01/18 12:0 a.m.•2 views

Important: java-11-amazon-corretto

7.4CVSS6.9AI score0.00344EPSS

Exploits0

IBM Security Bulletins•added 2023/12/14 6:55 p.m.•39 views

Security Bulletin: IBM MQ Appliance is affected by multiple Java vulnerabilitites (CVE-2023-22081 and CVE-2023-5676)

Summary IBM MQ Appliance has resolved multiple Java vulnerabilities. Vulnerability Details CVEID:CVE-2023-22081 DESCRIPTION: An unspecified vulnerability in Java SE related to the JSSE component could allow a remote attacker to cause no confidentiality impact, no integrity impact, and low...

5.9CVSS5.8AI score0.00098EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/11/28 10:41 p.m.•47 views

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in snappy-java

Summary Multiple vulnerabilities in snappy-java used by IBM InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2023-34455 DESCRIPTION: snappy-java is vulnerable to a denial of service, caused by the use of an unchecked chunk length in the hasNextChunk function. By sendi...

7.5CVSS7.3AI score0.01503EPSS

Exploits2Affected Software1

Tenable Nessus•added 2023/10/19 12:0 a.m.•26 views

RHEL 8 : java-1.8.0-openjdk (RHSA-2023:5727)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5727 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

5.3CVSS6.5AI score0.00172EPSS

Exploits0References8

IBM Security Bulletins•added 2023/10/04 1:3 p.m.•52 views

Security Bulletin: IBM Storage Protect Backup-Archive Client and IBM Storage Protect for Virtual Environments are vulnerable to confidentiality impact, availability impact, integrity impact, and arbitrary code execution due to multiple CVEs in IBM Java

Summary IBM Storage Protect Backup-Archive Client and IBM Storage Protect for Virtual Environments are affected by multiple vulnerabilities in IBM Java: CVE-2023-21930, CVE-2023-21967, CVE-2023-21954, CVE-2023-21939, CVE-2023-21968, CVE-2023-21937, CVE-2023-21938, CVE-2023-2597. The vulnerabiltie...

9.1CVSS8.4AI score0.02108EPSS

Exploits1Affected Software2

IBM Security Bulletins•added 2023/08/30 8:29 a.m.•12 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation for Multiplatforms - Java deserialization filters (JEP 290) ignored during IBM ORB deserialization - (CVE-2022-40609)

Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition used by v4.1.0.4 to v4.1.1.0 of IBM Tivoli System Automation for Multiplatforms. Object Request Broker ORB in IBM SDK, Java Technology Edition has been affected. Vulnerability Details Refer to the security bulletins...

9.8CVSS9.1AI score0.00435EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/29 2:36 p.m.•38 views

Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities

Summary IBM Cloud Transformation Advisor has addressed several Java security vulnerabilities Vulnerability Details CVEID:CVE-2023-21930 DESCRIPTION: An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the JSSE component could allow an unauthenticated...

9.8CVSS9.3AI score0.02108EPSS

Exploits3Affected Software1

OSV•added 2023/08/28 8:26 a.m.•5 views

SUSE-SU-2023:3442-1 Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u382 icedtea-3.28.0: - CVE-2023-22045: Fixed a difficult to exploit vulnerability that allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM...

3.7CVSS4.3AI score0.00141EPSS

Exploits0References5

OSV•added 2023/08/14 8:16 a.m.•7 views

SUSE-SU-2023:3305-1 Security update for java-1_8_0-openj9

This update for java-180-openj9 fixes the following issues: Update to OpenJDK 8u372 build 07 with OpenJ9 0.38.0 virtual machine. CVE-2023-21930: Unauthenticated attacker with network access via TLS to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition bsc1210628. CVE-2023-21937: Fixed...

9.1CVSS5.7AI score0.02108EPSS

Exploits1References17

IBM Security Bulletins•added 2023/07/25 3:28 p.m.•23 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Decision Optimization for IBM Cloud Private for Data (ICP4Data)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8 used by IBM Decision Optimization for ICP4Data. IBM Decision Optimization for ICP4Data has addressed the applicable CVEs. Vulnerability Details If you run your own Java code using the IBM Java Runtime...

9.8CVSS9AI score0.00782EPSS

Exploits1Affected Software1

Tenable Nessus•added 2023/07/24 12:0 a.m.•32 views

F5 Networks BIG-IP : Java vulnerabilities (K000135555)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the K000135555 advisory. CVE-2020-2756Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serializatio...

4.3CVSS6.3AI score0.0026EPSS

Exploits0References3

Tenable Nessus•added 2023/07/21 12:0 a.m.•32 views

AlmaLinux 8 : java-1.8.0-openjdk (ALSA-2023:4176)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4176 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported...

3.7CVSS6.3AI score0.00141EPSS

Exploits0References3

IBM Security Bulletins•added 2023/07/13 2:52 p.m.•24 views

Security Bulletin: IBM Event Streams is affected by multiple Semaru Java vulnerabilities

Summary IBM Event Streams has addressed the following IBM Semaru Java vulnerabilities before version 17.0.7.0 CVE-2023-21930, CVE-2023-21967, CVE-2023-21954, CVE-2023-21939, CVE-2023-21968, CVE-2023-21937, CVE-2023-21938, CVE-2023-2597 Vulnerability Details CVEID:CVE-2023-21930 DESCRIPTION: An...

9.1CVSS8.5AI score0.02108EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2023/06/28 12:18 p.m.•36 views

Security Bulletin: CVE-2023-21830 and CVE-2023-21843 may affect IBM® SDK, Java™ Technology Edition shipped with IBM CICS TX Advanced

Summary CVE-2023-21830 and CVE-2023-21843 may affect IBM® SDK, Java™ Technology Edition shipped with IBM CICS TX Advanced. IBM CICS TX Advanced has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-21830 DESCRIPTION: An unspecified vulnerability in Java SE related to the...

5.3CVSS5.1AI score0.00135EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/05/26 3:32 a.m.•28 views

Security Bulletin: IBM Sterling Connect:Direct Browser User Interface vulnerable to multiple issues due to IBM Runtime Environment Java

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions. Sterling Connect:Direct Browser User Interface has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-21830 DESCRIPTION: An unspecified vulnerability in Java SE related to the Serialization...

5.3CVSS5.6AI score0.00135EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/05/15 10:26 p.m.•29 views

Security Bulletin: Vulnerabilities in IBM Java included with IBM Tivoli Monitoring.

Summary Vulnerabilities in IBM® Java™ Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring ITM components. CVEs: CVE-2023-21830, CVE-2023-21843, CVE-2022-21426 Vulnerability Details CVEID:CVE-2022-21426 DESCRIPTION: An unspecified vulnerability in Java SE related to the JA...

5.3CVSS5.7AI score0.00135EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/05/02 10:46 p.m.•51 views

Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Java

Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of Java . Vulnerability Details CVEID:CVE-2022-21426 DESCRIPTION: An unspecified vulnerability in Java SE related to the JAXP component could allow an unauthenticated attacker to cause a denial of...

5.3CVSS5.1AI score0.00135EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/05/02 12:20 p.m.•43 views

Security Bulletin: IBM Spectrum Scale Transparent Cloud Tiering is affected by multiple vulnerabilities in IBM® Runtime Environment Java™

Summary Multiple vulnerabilities were disclosed as part of the Oracle October 2021 Critical Patch Update. Vulnerability Details CVEID:CVE-2021-35560 DESCRIPTION: An unspecified vulnerability in Java SE related to the Deployment component could allow an unauthenticated attacker to take control of...

9.8CVSS9AI score0.00675EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/04/17 9:45 p.m.•28 views

Security Bulletin: Vulnerabilities in IBM Java included with IBM Tivoli Monitoring.

Summary Vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring ITM components. CVEs: CVE-2022-21541, CVE-2022-21540, CVE-2022-3676, CVE-2021-2163, CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619 Vulnerability Details...

6.5CVSS7.2AI score0.00438EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by