CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

F5 Networks•added 2025/05/09 5:52 p.m.•7 views

K000151257: Java vulnerability CVE-2025-30698

Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK:...

5.6CVSS5.5AI score0.00076EPSS

Tenable Nessus•added 2025/05/09 12:0 a.m.•3 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : java-17-openjdk (SUSE-SU-2025:1490-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1490-1 advisory. Update to upstream tag jdk-17.0.15+6 April 2025 CPU CVEs: + CVE-2025-21587: Fixed JSSE...

7.4CVSS7.1AI score0.00226EPSS

Exploits0References10

F5 Networks•added 2025/05/07 7:19 a.m.•9 views

K000151206: Oracle Java SE vulnerability CVE-2025-21587

Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE:8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for...

7.4CVSS6.2AI score0.00226EPSS

F5 Networks•added 2025/05/06 4:1 p.m.•7 views

K000151202: Java vulnerability CVE-2025-30691

Security Advisory Description Vulnerability in Oracle Java SE component: Compiler. Supported versions that are affected are Oracle Java SE: 21.0.6, 24; Oracle GraalVM for JDK: 21.0.6 and 24. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.8CVSS5AI score0.00137EPSS

BDU FSTEC•added 2025/04/30 12:0 a.m.•1 views

The vulnerability of the JSE component of Oracle Java SE software, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows attackers to influence the confidentiality and integrity of protected information.

The vulnerability of the JSE component of Oracle Java SE software, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, is related to access control errors. Exploiting this vulnerability can allow an attacker to influence the confidentiality and integri...

Exploits0References6Affected Software7

Amazon•added 2025/04/30 12:0 a.m.•2 views

Important: java-11-amazon-corretto

7.4CVSS6.7AI score0.00226EPSS

Tenable Nessus•added 2025/04/30 12:0 a.m.•16 views

Amazon Linux 2 : java-17-amazon-corretto (ALAS-2025-2838)

The version of java-17-amazon-corretto installed on the remote host is prior to 17.0.15+6-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2838 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product...

Amazon•added 2025/04/30 12:0 a.m.•3 views

Important: java-17-amazon-corretto

7.4CVSS6.7AI score0.00226EPSS

Amazon•added 2025/04/30 12:0 a.m.•32 views

Important: java-17-amazon-corretto

7.4CVSS7.2AI score0.00226EPSS

Tenable Nessus•added 2025/04/30 12:0 a.m.•19 views

Amazon Linux 2 : java-11-amazon-corretto (ALAS-2025-2839)

The version of java-11-amazon-corretto installed on the remote host is prior to 11.0.27+6-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2839 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product...

Amazon•added 2025/04/30 12:0 a.m.•16 views

Important: java-11-amazon-corretto

7.4CVSS7.2AI score0.00226EPSS

OSV•added 2025/04/29 1:35 p.m.•12 views

SUSE-SU-2025:1399-1 Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.27+6 April 2025 CPU CVEs: + CVE-2025-21587: Fixed JSSE unauthorized access, deletion or modification of critical data bsc1241274 + CVE-2025-30691: Fixed Oracle Java SE Compiler Unauthorized Data Access...

7.4CVSS6.9AI score0.00226EPSS

Exploits0References7

Amazon•added 2025/04/29 12:0 a.m.•2 views

Important: java-11-amazon-corretto

7.4CVSS7.1AI score0.00226EPSS

Amazon•added 2025/04/29 12:0 a.m.•3 views

Important: java-17-amazon-corretto

7.4CVSS7.6AI score0.00226EPSS

Amazon•added 2025/04/29 12:0 a.m.•1 views

Important: java-17-amazon-corretto

7.4CVSS7.1AI score0.00226EPSS

Amazon•added 2025/04/29 12:0 a.m.•3 views

Important: java-24-amazon-corretto

7.4CVSS7.6AI score0.00226EPSS

Tenable Nessus•added 2025/04/29 12:0 a.m.•23 views

Amazon Linux 2023 : java-11-amazon-corretto, java-11-amazon-corretto-devel, java-11-amazon-corretto-headless (ALAS2023-2025-955)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-955 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java...

Amazon•added 2025/04/29 12:0 a.m.•2 views

Important: java-1.8.0-amazon-corretto

Issue Overview: Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Scripting. Supported versions that are affected are Java SE: 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access vi...

8.3CVSS6.5AI score0.02622EPSS

Tenable Nessus•added 2025/04/29 12:0 a.m.•28 views

Amazon Linux 2023 : java-1.8.0-amazon-corretto, java-1.8.0-amazon-corretto-devel (ALAS2023-2025-953)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-953 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java...