120 matches found
OpenJDK: insufficient access control checks in ActivationID (RMI, 8173697)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: RMI. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...
Oracle Java SE/JRockit Remote Vulnerability (CNVD-2017-18171)
Java SE is short for Java Platform Standard Edition, based on the JDK and JRE, for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. Oracle Java SE/JRockit has a security vulnerability in its implementation that allows an attacker t...
Unspecified Vulnerability in Oracle Java SE and Java SE Embedded Components
Oracle Java SE and Java SE Embedded are both products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, as well as embedded devices and real-time environments; Java SE Embedded is a Java platform for the developmen...
CVE-2016-3587
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot...
Oracle Java SE/Java SE Embedded and JRockit Denial of Service Vulnerabilities
Oracle Java SE, Java SE Embedded, and JRockit are products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments; Java SE Embedded is a Java platform for developing...
UBUNTU-CVE-2016-0494
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...
ICU: missing boundary checks in layout engine (OpenJDK 2D, 8132042)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...
OpenJDK: incorrect String object deserialization in IIOPInputStream (CORBA, 8076387)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect availability via vectors related to CORBA...
Unspecified Vulnerability in Oracle Java SE (CNVD-2015-06931)
Oracle Java SE is the standard version of the Java platform is a Java2 platform to provide users with a program development environment. An unspecified vulnerability exists in Oracle Java SE 8u60, JavaFX 2.2.85. Allows remote attackers to compromise confidentiality via unspecified vectors related...
OpenJDK: missing checks for proper initialization in ObjectStreamClass (Serialization, 8103671)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization...
OpenJDK: incomplete constraints enforcement by AlgorithmChecker (Security, 8131291)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect integrity via unknown vectors related to Security...
Oracle Java SE Hotspot Subcomponent Vulnerability
Java SE is short for Java Platform, Standard Edition also known as Java 2 Platform, which is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in the Hotspot subcomponent of Oracle Java SE version...
Unspecified Local Arbitrary Code Execution Vulnerability in Oracle Java SE Deployment Component
Oracle Java SE is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in the Deployment subcomponent of Oracle Java SE, which can be exploited by a local attacker to construct a malicious web page tha...
Unspecified Vulnerability in Oracle Java SE JSSE Component
Oracle Java SE is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in the JSSE subcomponent of Oracle Java SE, which can be exploited by a remote attacker to construct a malicious WEB page and tric...
Oracle Java SE/Jrockit/Java SE Embedded Denial of Service Vulnerability
Oracle Java SE, JRockit, and Java SE Embedded are products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments; JRockit is a Java virtualization machine built into Orac...
UBUNTU-CVE-2015-4749
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect availability via vectors related to JNDI...
OpenJDK: IIOPInputStream type confusion vulnerability (CORBA, 8076376)
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA...
JDK: unspecified vulnerability fixed in 8u45 (Deployment)
Unspecified vulnerability in Oracle Java SE 8u40 allows remote attackers to affect confidentiality via unknown vectors related to Deployment...
JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)
Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6493, CVE-2014-6503, and CVE-2014-6532...
UBUNTU-CVE-2014-6558
Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and JRockit R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Security...