Lucene search
K

149 matches found

RedHat Linux
RedHat Linux
added 2022/05/17 11:41 p.m.3 views

OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable...

7.5CVSS7.4AI score0.03825EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/03/06 12:0 a.m.5 views

Antaris RazorEngine 安全漏洞

Antaris RazorEngine is an open source templating engine based on Microsoft's Razor parsing engine from Matthew Abbott, a personal developer in the U.K. Antaris RazorEngine contains a security vulnerability that could be exploited by attackers to execute arbitrary .NET code in a sandboxed...

9.8CVSS6.1AI score0.01832EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.6 views

CVE-2022-21291

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS6.5AI score0.02896EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2022/01/19 11:23 a.m.4 views

CVE-2022-21305

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS6.5AI score0.02755EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2022/01/19 11:23 a.m.4 views

CVE-2022-21296

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS6.5AI score0.02825EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2021/07/20 12:0 a.m.11 views

PT-2021-3767

Name of the Vulnerable Software and Affected Versions Java SE versions 8u291, 11.0.11, 16.0.1 Oracle GraalVM Enterprise Edition versions 20.3.2, 21.1.0 Description The issue allows an unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM...

7.6CVSS7.4AI score0.04008EPSS
Exploits0References341
RedHat Linux
RedHat Linux
added 2020/08/10 3:17 p.m.3 views

OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

7.4CVSS7.4AI score0.03864EPSS
Exploits0References4
OSV
OSV
added 2019/10/16 6:15 p.m.2 views

DEBIAN-CVE-2019-2894

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

3.7CVSS6.8AI score0.03159EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 6:15 p.m.1 views

UBUNTU-CVE-2019-2988

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

3.7CVSS6.7AI score0.03284EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/05/13 9:8 p.m.3 views

OpenJDK: Font layout engine out of bounds access setCurrGlyphID() (2D, 8219022)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS7.4AI score0.12013EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2019/05/13 9:8 p.m.4 views

JDK: Unspecified vulnerability fixed in 7u221 and 8u211 (2D)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS7.4AI score0.11466EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/03/06 9:53 p.m.5 views

JDK: unspecified vulnerability fixed in 8u201 (Deployment)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. The supported version that is affected is Java SE: 8u192. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks...

3.1CVSS7.4AI score0.02979EPSS
Exploits0References5
OSV
OSV
added 2019/02/19 5:29 p.m.1 views

DEBIAN-CVE-2019-5756

Inappropriate memory management when caching in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file...

8.8CVSS9AI score0.02697EPSS
Exploits0References1
OSV
OSV
added 2019/01/16 7:30 p.m.6 views

CVE-2019-2449

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. The supported version that is affected is Java SE: 8u192. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks...

3.1CVSS6.8AI score0.02979EPSS
Exploits0References7
OSV
OSV
added 2019/01/16 7:30 p.m.5 views

CVE-2019-2426

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

3.7CVSS6.9AI score0.02575EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2018/12/18 3:51 p.m.6 views

OpenJDK: Incomplete enforcement of the trustURLCodebase restriction (JNDI, 8199177)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...

8.3CVSS7.3AI score0.07215EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2018/09/17 2:51 p.m.3 views

JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

5.9CVSS7.4AI score0.04676EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/07/24 9:9 p.m.6 views

JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

5.9CVSS7.4AI score0.04676EPSS
Exploits0References5
OSV
OSV
added 2018/04/19 2:29 a.m.5 views

CVE-2018-2825

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Libraries. The supported version that is affected is Java SE: 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require...

8.3CVSS6.4AI score0.04146EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2017/12/13 4:48 p.m.4 views

OpenJDK: incorrect privilege use when handling unreferenced objects (RMI, 8174966)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: RMI. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

9.6CVSS7.4AI score0.03143EPSS
Exploits0References4
Rows per page
Query Builder