CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/05/08 12:0 a.m.•9 views

PT-2026-38697

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JNDI. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS6.1AI score0.00103EPSS

Positive Technologies•added 2026/05/08 12:0 a.m.•11 views

PT-2026-38703

Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of th...

5.3CVSS5.9AI score0.00041EPSS

Exploits0References9

Positive Technologies•added 2026/05/08 12:0 a.m.•7 views

PT-2026-38791

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6,...

3.7CVSS5.8AI score0.00141EPSS

OSV•added 2026/05/06 2:43 p.m.•2 views

BIT-JAVA-2023-22045

3.7CVSS6.5AI score0.00141EPSS

OSV•added 2026/05/06 2:43 p.m.•2 views

BIT-JAVA-2023-22044

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371-perf, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 21.3.6, 22.3.2; Oracle GraalVM for...

3.7CVSS6.2AI score0.0013EPSS

Exploits0References5

OSV•added 2026/05/06 2:42 p.m.•3 views

BIT-JAVA-MIN-2020-2778

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability...

4.3CVSS6.7AI score0.00356EPSS

Exploits0References6

OSV•added 2026/05/06 2:41 p.m.•2 views

BIT-JAVA-MIN-2020-14781

4.3CVSS5.8AI score0.00103EPSS

Positive Technologies•added 2026/05/06 12:0 a.m.•3 views

PT-2026-37744

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edition: 20.3.6, 21.3.2 and 22.1.0. Easily exploitab...

5.3CVSS6.1AI score0.00438EPSS

Exploits0References13

Positive Technologies•added 2026/05/06 12:0 a.m.•5 views

PT-2026-37977

3.7CVSS6.5AI score0.00141EPSS

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

PT-2026-37877

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocol...

4.3CVSS6.7AI score0.00385EPSS

Exploits0References17

Positive Technologies•added 2026/05/06 12:0 a.m.•3 views

PT-2026-37670

4.3CVSS5.8AI score0.00385EPSS

Exploits0References17

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

PT-2026-37905

4.3CVSS6.7AI score0.00356EPSS

Positive Technologies•added 2026/05/06 12:0 a.m.•3 views

PT-2026-37726

5.3CVSS5.8AI score0.00144EPSS

OSV•added 2026/05/04 12:34 p.m.•2 views

SUSE-SU-2026:21543-1 Security update for java-25-openjdk

This update for java-25-openjdk fixes the following issues: Update to upstream tag jdk-25.0.3+9 April 2026 CPU. Security issues fixed: - CVE-2026-22007: Security: unauthenticated attacker with logon to the infrastructure where java executes can gain unauthorized read access to a subset of...

7.5CVSS5.9AI score0.00154EPSS

Exploits0References19

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в openjdk-11

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. The supported versions affected by this vulnerability are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. The vulnerability is difficult t...

4.3CVSS6.8AI score0.00378EPSS

Tenable Nessus•added 2026/03/16 12:0 a.m.•4 views

EulerOS 2.0 SP12 : rsync (EulerOS-SA-2026-1410)

According to the versions of the rsync package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array...

4.3CVSS5.9AI score0.00063EPSS

Exploits0References2

OSV•added 2026/01/20 10:16 p.m.•1 views

CVE-2026-21974

Vulnerability in the Oracle Life Sciences Central Designer product of Oracle Health Sciences Applications component: Platform. The supported version that is affected is 7.0.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Life...

5.3CVSS5.8AI score

NVD•added 2026/01/20 10:15 p.m.•3 views

CVE-2026-21928

Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP to compromise Oracle Solaris. Successful attacks of this vulnerability can...

5.3CVSS0.00059EPSS

RedhatCVE•added 2026/01/09 9:20 a.m.•3 views

CVE-2021-2403

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

5.3CVSS5.3AI score0.01823EPSS