CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

496 matches found

RedHat Linux•added 2022/01/24 1:2 p.m.•2 views

OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS7.4AI score0.07748EPSS

Exploits0References4

RedHat Linux•added 2022/01/24 11:39 a.m.•3 views

OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS7.4AI score0.03782EPSS

Exploits0References4

RedHat Linux•added 2022/01/24 11:39 a.m.•5 views

OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS7.4AI score0.03782EPSS

Exploits0References4

RedHat Linux•added 2022/01/24 9:45 a.m.•1 views

OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

5.3CVSS7.4AI score0.07748EPSS

Exploits0References4

Tenable Nessus•added 2022/01/20 12:0 a.m.•40 views

Oracle Solaris Critical Patch Update : jan2022_SRU11_4_41_107_2

This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Oracle Solaris product of Oracle Systems component: Libraries. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with networ...

5.3CVSS5.9AI score0.02789EPSS

Exploits0References4

ATTACKERKB•added 2022/01/19 12:15 p.m.•2 views

CVE-2022-21294

5.3CVSS6.5AI score0.0335EPSS

Exploits0References7

RedHat Linux•added 2022/01/19 10:5 a.m.•2 views

OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

5.3CVSS7.4AI score0.07748EPSS

Exploits0References4

Positive Technologies•added 2022/01/18 12:0 a.m.•3 views

PT-2022-6854

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u321, 8u311, 11.0.13, 17.0.1 Oracle GraalVM Enterprise Edition versions 20.3.4, 21.3.0 Description The issue is related to an unbounded resource allocation in the Libraries component of Oracle Java SE and Oracle GraalV...

5.3CVSS6.8AI score0.07748EPSS

Exploits0References214

IBM Security Bulletins•added 2021/12/03 1:17 p.m.•33 views

Security Bulletin: CVE-2021-2161 may affect IBM® SDK, Java™ Technology Edition used by IBM Data Studio Client

Summary CVE-2021-2161 was disclosed in the Oracle April 2021 Patch Update. Vulnerability Details CVEID: CVE-2021-2161 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, high integrity...

5.9CVSS5.3AI score0.03125EPSS

Exploits0Affected Software1

Positive Technologies•added 2021/11/15 12:0 a.m.•3 views

PT-2021-6661

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u321, 8u311, 11.0.13, 17.0.1 Oracle GraalVM Enterprise Edition versions 20.3.4, 21.3.0 Description The issue is related to insufficient input validation in the Libraries component of Oracle Java SE and Oracle GraalVM...

5.3CVSS6.8AI score0.08346EPSS

Exploits0References226

Positive Technologies•added 2021/11/15 12:0 a.m.•3 views

PT-2021-6664

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u321, 8u311, 11.0.13, 17.0.1 Oracle GraalVM Enterprise Edition versions 20.3.4 and 21.3.0 Description The issue is related to an easily exploitable vulnerability in the Libraries component of Oracle Java SE and Oracle...

5.3CVSS6.8AI score0.03782EPSS

Exploits0References213

Positive Technologies•added 2021/11/15 12:0 a.m.•4 views

PT-2021-6667

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u321, 8u311, 11.0.13 Oracle GraalVM Enterprise Edition versions 20.3.4 and 21.3.0 Description The issue is related to a vulnerability in the Libraries component of Oracle Java SE and Oracle GraalVM Enterprise Edition,...

5.3CVSS6.5AI score0.02789EPSS

Exploits0References84

RedHat Linux•added 2021/10/25 12:24 p.m.•4 views

OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows low privileged attack...

6.8CVSS7.4AI score0.027EPSS

Exploits0References4

CNNVD•added 2021/10/19 12:0 a.m.•2 views

Oracle Java SE 输入验证错误漏洞

Java SE stands for Java Platform Standard Edition and is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments.Oracle GraalVM Enterprise Edition is an Oracle-based multilingual virtual machine for enterprise Java SE. An information...

6.8CVSS5.6AI score0.027EPSS

Exploits0References40

IBM Security Bulletins•added 2021/10/06 12:30 p.m.•32 views

Security Bulletin: IBM Security Guardium Insights is affected by an IBM SDK, Java Technology Edition Quarterly CPU - Jul 2020 - Includes Oracle Jul 2020 CPU vulnerability

Summary IBM Security Guardium Insights has addressed the following vulnerability Vulnerability Details CVEID: CVE-2020-14583 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause low confidentiality impact, low...

8.3CVSS1.1AI score0.04434EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/09/23 1:31 a.m.•52 views

Security Bulletin: Multiple Vulnerabilities in IBM Java SDK Affect Power Hardware Management Console (CVE-2014-6512, CVE-2014-3566, CVE-2014-6457, CVE-2014-6558)

Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition, Version 6 that is used by Power Hardware Management Console. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption POODLE SSLv3 vulnerability CVE-2014-3566. These were disclosed as part of the...

4.3CVSS4.3AI score0.99999EPSS

Exploits6Affected Software1

IBM Security Bulletins•added 2021/09/23 1:31 a.m.•40 views

Security Bulletin: Vulnerabilities in Java affect Power Hardware Management Console (CVE-2015-4843 CVE-2015-4868 CVE-2015-4806 CVE-2015-4872 CVE-2015-4911 CVE-2015-4893 CVE-2015-4842 CVE-2015-4803)

Summary Java is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-4843 DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Libraries component has complete confidentiality impact, complete integrity...

10CVSS5.2AI score0.09991EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/09/17 10:46 a.m.•26 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM WebSphere Cast Iron Solution & App Connect Professional

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology used by IBM Cast Iron. These issues were disclosed as part of the IBM Java SDK updates in April 2021. IBM Cast Iron has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2021-2161 DESCRIPTION: An unspecified...

5.9CVSS0.4AI score0.03125EPSS

Exploits0Affected Software2

IBM Security Bulletins•added 2021/09/14 3:22 p.m.•49 views

Security Bulletin: Multiple security vulnerabilities in IBM Java SDK affects IBM Voice Gateway

Summary Multiple security vulnerabilities in IBM Java SDK affects IBM Voice Gateway Vulnerability Details CVEID: CVE-2021-2161 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, high...

5.9CVSS2AI score0.03125EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/08/25 8:40 a.m.•24 views

Security Bulletin: CVE-2021-2161 may affect IBM® SDK, Java™ Technology Edition for Content Collector for SAP Applications

Summary CVE-2021-2161 was disclosed in the Oracle April 2021 Critical Patch Update. Vulnerability Details CVEID: CVE-2021-2161 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, high...

5.9CVSS0.7AI score0.03125EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by