CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

4.8CVSS5.9AI score0.00576EPSS

SUSE CVE-2020-14556

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

Exploits0References15

3.7CVSS5.5AI score0.00158EPSS

SUSE CVE-2020-14578

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols ...

Exploits0References15

8.3CVSS7.8AI score0.01018EPSS

SUSE CVE-2020-14583

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.2CVSS5.4AI score0.00186EPSS

SUSE CVE-2020-14792

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

SUSE CVE•added 2023/02/15 3:57 a.m.•3 views

SUSE CVE-2020-14796

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

3.1CVSS4.8AI score0.00134EPSS

SUSE CVE•added 2023/02/15 3:57 a.m.•4 views

SUSE CVE-2020-14797

3.7CVSS5.2AI score0.00161EPSS

RedHat Linux•added 2021/04/28 12:34 p.m.•4 views

OpenJDK: Incorrect handling of partially quoted arguments in ProcessBuilder on Windows (Libraries, 8250568)

Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20.3.1.2 and 21.0.0.2...

5.9CVSS6.9AI score0.01132EPSS

OSV•added 2021/04/22 10:15 p.m.•0 views

UBUNTU-CVE-2021-2161

5.9CVSS6.9AI score0.01132EPSS

Exploits0References2

Positive Technologies•added 2021/04/20 12:0 a.m.•0 views

PT-2021-2919

Name of the Vulnerable Software and Affected Versions Java SE versions 7u291, 8u281, 11.0.10, 16 Java SE Embedded version 8u281 Oracle GraalVM Enterprise Edition versions 19.3.5, 20.3.1.2, 21.0.0.2 Description The issue allows an unauthenticated attacker with network access via multiple protocols...

9CVSS7.2AI score0.7287EPSS

Exploits4References326

RedHat Linux•added 2021/03/04 5:44 p.m.•5 views

OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JNDI. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS7.1AI score0.00103EPSS

RedHat Linux•added 2021/02/16 7:39 a.m.•4 views

OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.3CVSS7.1AI score0.00164EPSS

RedHat Linux•added 2021/02/16 7:39 a.m.•1 views

OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

4.3CVSS7.3AI score0.00161EPSS

RedHat Linux•added 2020/12/16 3:21 p.m.•2 views

OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

5.8CVSS7.2AI score0.00576EPSS

RedHat Linux•added 2020/12/16 3:21 p.m.•3 views

OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JAXP. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

5.3CVSS7.1AI score0.00474EPSS

RedHat Linux•added 2020/12/16 3:21 p.m.•2 views

OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

4.3CVSS7.1AI score0.00103EPSS

RedHat Linux•added 2020/12/16 3:21 p.m.•1 views

OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

4.3CVSS7.1AI score0.00144EPSS