CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Mageia•added 2025/02/07 7:45 p.m.•47 views

Updated java-1.8.0-openjdk, java-11-openjdk, java-17-openjdk & java-latest-openjdk packages fix security vulnerability

A difficult to exploit vulnerability allows unauthenticated attackers with network access via multiple protocols to compromise Oracle Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to Oracle Java SE accessible. This vulnerability can b...

Tenable Nessus•added 2025/02/07 12:0 a.m.•13 views

Exploits0References5

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.10.1)

The version of AOS installed on the remote host is prior to 6.10.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.10.1 advisory. - An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for mgroupSize ...

9.8CVSS7.4AI score0.25805EPSS

Exploits11References66

RedHat Linux•added 2025/02/06 4:42 p.m.•4 views

openjdk: Enhance array handling (Oracle CPU 2025-01)

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to Oracle Java SE accessible. This vulnerability can be...

4.8CVSS7.4AI score0.00271EPSS

Exploits0References5

IBM Security Bulletins•added 2025/02/05 5:18 a.m.•16 views

Security Bulletin: IBM B2B Advanced Communications is vulnerable to multiple issues due to Java SDK (CVE-2023-21930, CVE-2023-21967, CVE-2023-21954, CVE-2023-21939, CVE-2023-21968, CVE-2023-21937, CVE-2023-21938, CVE-2023-2597)

Summary IBM B2B Advanced Communications has addressed vulnerabilities in Java SDK shipped with product. Vulnerability Details CVEID:CVE-2023-21930 DESCRIPTION: An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the JSSE component could allow an...

9.1CVSS8.4AI score0.01156EPSS

Exploits1Affected Software1

Amazon•added 2025/02/05 12:0 a.m.•5 views

Medium: java-17-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u431-perf, 11.0.25, 17.0.13, 21.0.5, 23.0.1; Oracle GraalVM for JDK: 17.0.13,...

Amazon•added 2025/02/05 12:0 a.m.•10 views

Medium: java-21-amazon-corretto

Amazon•added 2025/02/05 12:0 a.m.•7 views

Medium: java-23-amazon-corretto

Amazon•added 2025/02/05 12:0 a.m.•3 views

Medium: java-21-amazon-corretto

Amazon•added 2025/02/05 12:0 a.m.•3 views

Medium: java-23-amazon-corretto

Tenable Nessus•added 2025/02/05 12:0 a.m.•15 views

Amazon Linux 2023 : java-21-amazon-corretto, java-21-amazon-corretto-devel, java-21-amazon-corretto-headless (ALAS2023-2025-827)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-827 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE:...

4.8CVSS6.5AI score0.00271EPSS

Exploits0References4

Amazon•added 2025/02/05 12:0 a.m.•7 views

Medium: java-17-amazon-corretto

Tenable Nessus•added 2025/02/05 12:0 a.m.•10 views

Amazon Linux 2023 : java-23-amazon-corretto, java-23-amazon-corretto-devel, java-23-amazon-corretto-headless (ALAS2023-2025-825)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-825 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE:...

4.8CVSS6.5AI score0.00271EPSS

Exploits0References4

Tenable Nessus•added 2025/02/05 12:0 a.m.•9 views

Amazon Linux 2023 : java-11-amazon-corretto, java-11-amazon-corretto-devel, java-11-amazon-corretto-headless (ALAS2023-2025-826)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-826 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE:...

4.8CVSS6.5AI score0.00271EPSS

Exploits0References4

Amazon•added 2025/02/05 12:0 a.m.•5 views

Medium: java-11-amazon-corretto

IBM Security Bulletins•added 2025/02/04 6:37 p.m.•46 views

Security Bulletin: IBM Sterling Control Center v6.2.1 and v6.3.1 is vulnerable with IBM Semeru Runtime Quarterly CPU - Apr 2023

Summary IBM Semeru Runtime Quarterly CPU - Apr 2023 - Includes OpenJDK April 2023 CPU plus CVE-2023-25193 and CVE-2023-2597 and affecting Sterling Control Center v6.2.1 and v6.3.1. Vulnerability Details CVEID:CVE-2023-21930 DESCRIPTION: An unspecified vulnerability in Oracle Java SE, Oracle Graal...

9.1CVSS8.4AI score0.01156EPSS

Exploits1Affected Software1

Amazon•added 2025/02/04 12:0 a.m.•3 views

Medium: java-11-amazon-corretto

4.8CVSS5.6AI score0.00271EPSS

Amazon•added 2025/02/04 12:0 a.m.•18 views

Medium: java-11-amazon-corretto

4.8CVSS5AI score0.00271EPSS