Lucene search
K

9018 matches found

OpenVAS
OpenVAS
added 2019/01/16 12:0 a.m.40 views

Oracle Java SE DoS Vulnerability (cpujan2019) - Linux

Oracle Java SE is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.1CVSS5.7AI score0.02716EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/01/16 12:0 a.m.56 views

Oracle Java SE Multiple Vulnerabilities (cpujan2019) - Windows

Oracle Java SE is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.2AI score0.04898EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2019/01/16 12:0 a.m.73 views

Oracle Java SE Multiple Vulnerabilities (cpujan2019) - Linux

Oracle Java SE is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.2AI score0.04898EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2019/01/15 10:21 p.m.27 views

CVE-2019-2426

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

4.3CVSS5.2AI score0.02587EPSS
Exploits0References3
Veracode
Veracode
added 2019/01/15 9:24 a.m.27 views

Denial Of Service (DoS)

java-1.8.0-openjdk is vulnerable to denial of service DoS attacks. The vulnerability exists through a vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Concurrency. Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Ja...

3.7CVSS4.7AI score0.04184EPSS
Exploits0References28Affected Software4
Veracode
Veracode
added 2019/01/15 9:21 a.m.20 views

Authorization Bypass

java-1.8.0-openjdk is vulnerable to authorization bypass attacks. The vulnerability exists as a vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161...

3.1CVSS5.2AI score0.05095EPSS
Exploits0References29Affected Software4
Veracode
Veracode
added 2019/01/15 9:21 a.m.46 views

Information Disclosure

java-1.7.0-openjdk is vulnerable to information disclosure attacks. The vulnerability exists as a vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131...

3.1CVSS4.8AI score0.02224EPSS
Exploits0References13Affected Software2
Veracode
Veracode
added 2019/01/15 9:11 a.m.29 views

Arbitrary Code Execution

java-1.8.0-openjdk is vulnerable to arbitrary code execution attacks. The vulnerability exists as an unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to...

9.6CVSS9.1AI score0.0472EPSS
Exploits0References42Affected Software6
Veracode
Veracode
added 2019/01/15 9:9 a.m.22 views

Privilege Escalation

java-1.6.0-openjdk is vulnerable to privilege escalation attacks. The vulnerability exists as unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect integrity via unknown vectors...

5CVSS6AI score0.04644EPSS
Exploits0References29Affected Software5
Veracode
Veracode
added 2019/01/15 8:55 a.m.26 views

Code Injection

openjdk is vulnerable to code injection attacks. The vulnerability exists as jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation...

5.3CVSS5.6AI score0.02432EPSS
Exploits0References9Affected Software3
Kaspersky
Kaspersky
added 2019/01/15 12:0 a.m.160 views

KLA11403 Multiple vulnerabilities in Oracle Java SE

Multiple vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A divide by zero vulnerability in libjpeg ImageIO component can be exploited remotely ...

6.5CVSS7.9AI score0.04898EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/11 6:25 p.m.36 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affects IBM InfoSphere Information Server

Summary There are multiple vulnerabilities in the IBM® SDK Java™ Technology Edition, Versions 7 and 8 that are used by IBM InfoSphere Information Server. These issues were disclosed as part of the IBM Java SDK updates in October 2018. Vulnerability Details CVEID: CVE-2018-3139 DESCRIPTION: An...

9CVSS0.6AI score0.07EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.54 views

SUSE SLES12 Security Update : java-1_6_0-ibm (SUSE-SU-2014:1541-1) (POODLE)

java-160-ibm was updated to version 1.6.0sr16.2 to fix 18 security issues. These security issues were fixed : - Unspecified vulnerability in Oracle Java SE 6u81 CVE-2014-3065. - The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which...

10CVSS6.4AI score0.99999EPSS
Exploits8References41
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/27 10:10 a.m.34 views

Security Bulletin: IBM Content Classification is affected by IBM SDK, Java Technology Edition Quarterly CPU - Oct 2018 - Includes Oracle Oct 2018 CPU

Summary There is vulnerability in IBM® SDK Java Technology Edition, Version 8 used by IBM Content Classification. These issues were disclosed as part of the IBM Java SDK updates in Oct 2018. Vulnerability Details CVEID: CVE-2018-3139 DESCRIPTION: An unspecified vulnerability in Oracle Java SE...

6.8CVSS1.3AI score0.07EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/27 10:5 a.m.28 views

Security Bulletin: IBM Content Classification is affected by IBM SDK, Java Technology Edition Quarterly CPU - Jul 2018 - Includes Oracle Jul 2018 CPU

Summary There is vulnerability in IBM® SDK Java Technology Edition, Version 6 used by IBM Content Classification. These issues were disclosed as part of the IBM Java SDK updates in Jul 2018. Vulnerability Details CVEID: CVE-2018-2973 DESCRIPTION: An unspecified vulnerability in Oracle Java SE...

7.5CVSS0.9AI score0.04676EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/14 6:10 p.m.44 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX

Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition, Versions 7, 7.1, 8 that are used by AIX. These issues were disclosed as part of the IBM Java SDK updates in October 2018. Vulnerability Details CVEID: CVE-2018-3139 DESCRIPTION: An unspecified vulnerability in Oracle...

9CVSS0.8AI score0.07215EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/12 6:45 p.m.26 views

Security Bulletin: Financial Transaction Manager for ACH Services for Multi-Platform is affected by vulnerabilities in IBM Java Runtime

Summary Financial Transaction Manager for ACH Services for Multi-Platform has addressed the following vulnerability. There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 or Version 8 that has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2018-3180...

6.8CVSS2.7AI score0.03392EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/11 6:30 p.m.30 views

Security Bulletin: Multiple security vulnerabilities have been identified in Jazz Team Server shipped with Jazz Reporting Service (CVE-2018-3139, CVE-2018-3180)

Summary Jazz Team Server is shipped as a component of Jazz Reporting Service JRS. Information about multiple security vulnerabilities affecting Jazz Team Server and Jazz-based products has been published in a security bulletin. Vulnerability Details CVEID: CVE-2018-3139 DESCRIPTION: An unspecifie...

6.8CVSS0.7AI score0.05243EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/10 5:55 p.m.42 views

Security Bulletin: Vulnerabilities in IBM Java Runtime affect Rational Publishing Engine

Summary There are multiple vulnerabilities in IBM Java Runtime Environment, Versions 7 and 8 that are used by Rational Publishing Engine. Vulnerability Details CVEID: CVE-2018-3180 DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded, JRockit JSSE...

6.8CVSS1.1AI score0.05243EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/06 11:0 p.m.26 views

Security Bulletin: A vulnerability in IBM Java Runtime affect Rational Asset Analyzer (RAA).

Summary A vulnerability in IBM® Runtime Environment Java™ Version 8.0.5.15 used by Rational Asset Analyzer. Rational Asset Analyzer has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2018-3180 DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE, Java...

6.8CVSS1.7AI score0.03392EPSS
Exploits0Affected Software1
Rows per page
Query Builder