Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

648 matches found

Prion
Prionadded 2020/07/15 6:15 p.m.16 views

Design/Logic Flaw

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

5.1CVSS8.1AI score0.01018EPSS
Exploits0References15Affected Software9
Vulnrichment
Vulnrichmentadded 2020/07/15 5:34 p.m.10 views

CVE-2020-14562

Vulnerability in the Java SE product of Oracle Java SE component: ImageIO. Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

5.3CVSS6AI score0.0059EPSS
Exploits0References10
RedhatCVE
RedhatCVEadded 2020/07/15 9:39 a.m.67 views

CVE-2020-14583

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

5.1CVSS2AI score0.01018EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2020/07/14 12:0 a.m.27 views

CVE-2020-14583

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

8.3CVSS6.9AI score0.01018EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2020/04/14 10:33 p.m.39 views

CVE-2020-2805

A flaw was found in the way the readObject method of the MethodType class in the Libraries component of OpenJDK checked argument types. This flaw allows an untrusted Java application or applet to bypass Java sandbox restrictions...

5.1CVSS3.3AI score0.01833EPSS
Exploits0References3
Veracode
Veracodeadded 2020/04/10 1:10 a.m.31 views

Privilege Escalation

openjdk is vulnerable to privilege escalation. The vulnerability exists as the AtomicReferenceArray class implementation did not properly check if the array was of the expected Object type. A malicious Java application or applet could use this flaw to bypass Java sandbox restrictions...

3.6CVSS2.9AI score0.00256EPSS
Exploits12References10Affected Software1
RedhatCVE
RedhatCVEadded 2020/01/31 10:43 p.m.43 views

CVE-2019-2684

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: RMI. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.9CVSS1.6AI score0.01264EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2020/01/30 12:0 a.m.242 views

Ubuntu 16.04 LTS / 18.04 LTS : OpenJDK vulnerabilities (USN-4257-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4257-1 advisory. It was discovered that OpenJDK incorrectly handled exceptions during deserialization in BeanContextSupport. An attacker could possibly use th...

8.1CVSS6.9AI score0.02147EPSS
Exploits0References9
Ubuntu
Ubuntuadded 2020/01/28 8:3 p.m.107 views

USN-4257-1: OpenJDK vulnerabilities

It was discovered that OpenJDK incorrectly handled exceptions during deserialization in BeanContextSupport. An attacker could possibly use this issue to cause a denial of service or other unspecified impact. CVE-2020-2583 It was discovered that OpenJDK incorrectly validated properties of SASL...

8.1CVSS6.7AI score0.02147EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2020/01/25 4:2 p.m.41 views

CVE-2019-2786

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

3.4CVSS1.3AI score0.00535EPSS
Exploits0References3
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for java-1.8.0-openjdk (EulerOS-SA-2017-1015)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.9AI score0.7287EPSS
Exploits13References2
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for java-1.7.0-openjdk (EulerOS-SA-2016-1080)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.2AI score0.06252EPSS
Exploits0References2
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for java-1.7.0-openjdk (EulerOS-SA-2017-1028)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.9AI score0.7287EPSS
Exploits13References2
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for java-1.8.0-openjdk (EulerOS-SA-2017-1016)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.9AI score0.7287EPSS
Exploits13References2
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for java-1.7.0-openjdk (EulerOS-SA-2016-1010)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.13484EPSS
Exploits0References2
NVD
NVDadded 2020/01/15 5:15 p.m.11 views

CVE-2020-2590

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.3CVSS4.3AI score0.00449EPSS
Exploits0References21
Prion
Prionadded 2020/01/15 5:15 p.m.20 views

Design/Logic Flaw

Vulnerability in the Java SE product of Oracle Java SE component: JavaFX. The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

4.3CVSS5.7AI score0.0163EPSS
Exploits0References4Affected Software3
UbuntuCve
UbuntuCveadded 2020/01/15 5:15 p.m.22 views

CVE-2020-2655

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this...

5.8CVSS6.8AI score0.02147EPSS
Exploits0References3
CVE
CVEadded 2020/01/15 4:34 p.m.186 views

CVE-2020-2585

CVE-2020-2585 is referenced in connected security advisories as affecting Oracle Java SE (component JavaFX) with affected Java SE 8u231. The advisory notes that exploitation is difficult but possible by a network-access attacker through multiple protocols, potentially allowing unauthorized creati...

5.9CVSS5.6AI score0.0163EPSS
Exploits0References4Affected Software2
Cvelist
Cvelistadded 2020/01/15 4:34 p.m.20 views

CVE-2020-2585

Vulnerability in the Java SE product of Oracle Java SE component: JavaFX. The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

5.9CVSS5.7AI score0.0163EPSS
Exploits0References4
Rows per page
Query Builder