CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2814 matches found

Check Point Advisories•added 2018/11/13 12:0 a.m.•1 views

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8542)

A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS7.9AI score0.18322EPSS

Exploits0

Check Point Advisories•added 2018/11/13 12:0 a.m.•3 views

Microsoft Chakra Scripting Engine Memory Corruption (CVE-2018-8555)

A memory corruption vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS7.9AI score0.18322EPSS

Exploits0

Check Point Advisories•added 2018/11/13 12:0 a.m.•3 views

Microsoft Chakra Scripting Engine Memory Corruption (CVE-2018-8557)

A memory corruption vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS7.9AI score0.18322EPSS

Exploits0

Tenable Nessus•added 2018/11/11 12:0 a.m.•76 views

RHEL 7 : java-1.8.0-ibm (RHSA-2018:3534)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3534 advisory. - OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests Security, 8194534 CVE-2018-3136 - OpenJDK: Leak of sensitive...

9CVSS6.5AI score0.03068EPSS

Exploits2References19

RedHat Linux•added 2018/11/09 11:49 a.m.•2 views

OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Scripting. Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with network...

9CVSS7.3AI score0.00565EPSS

Exploits0References4

RedHat Linux•added 2018/11/09 11:49 a.m.•5 views

OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936)

9CVSS7.3AI score0.00565EPSS

Exploits0References4

RedHat Linux•added 2018/11/07 6:26 p.m.•2 views

OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936)

9CVSS7.3AI score0.00565EPSS

Exploits0References4

Mageia•added 2018/11/03 11:55 a.m.•56 views

Updated java-1.8.0-openjdk packages fix security vulnerabilities

Updated java-1.8.0-openjdk packages fix security vulnerabilities: Incorrect handling of unsigned attributes in singed Jar manifests Security, 8194534 CVE-2018-3136. Leak of sensitive header data via HTTP redirect Networking, 8196902 CVE-2018-3139. Incomplete enforcement of the trustURLCodebase...

9CVSS0.6AI score0.00589EPSS

Exploits2References3

Tenable Nessus•added 2018/10/31 12:0 a.m.•42 views

Ubuntu 16.04 LTS / 18.04 LTS : OpenJDK vulnerabilities (USN-3804-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3804-1 advisory. It was discovered that the Security component of OpenJDK did not properly ensure that manifest elements were signed before use. An attacker...

9CVSS7AI score0.00783EPSS

Exploits2References9

OSV•added 2018/10/30 7:37 p.m.•0 views

USN-3804-1 openjdk-8, openjdk-lts vulnerabilities

It was discovered that the Security component of OpenJDK did not properly ensure that manifest elements were signed before use. An attacker could possibly use this to specially construct an untrusted Java application or applet that could escape sandbox restrictions. CVE-2018-3136 Artem Smotrakov...

9CVSS7AI score0.00783EPSS

Exploits2References9

RedHat Linux•added 2018/10/24 10:6 p.m.•4 views

OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936)

9CVSS7.3AI score0.00565EPSS

Exploits0References4

RedHat Linux•added 2018/10/24 10:6 p.m.•3 views

OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936)

9CVSS7.3AI score0.00565EPSS

Exploits0References4

Tenable Nessus•added 2018/10/19 12:0 a.m.•40 views

Scientific Linux Security Update : java-1.8.0-openjdk on SL6.x i386/x86_64 (20181018)

Security Fixes : - OpenJDK: Improper field access checks Hotspot, 8199226 CVE-2018-3169 - OpenJDK: Unrestricted access to scripting engine Scripting, 8202936 CVE-2018-3183 - OpenJDK: Incomplete enforcement of the trustURLCodebase restriction JNDI, 8199177 CVE-2018-3149 - OpenJDK: Incorrect handli...

9CVSS6.3AI score0.00589EPSS

Exploits2References8

Tenable Nessus•added 2018/10/18 12:0 a.m.•78 views

RHEL 7 : java-1.8.0-openjdk (RHSA-2018:2942)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2942 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

9CVSS6.6AI score0.00589EPSS

Exploits2References17

RedHat Linux•added 2018/10/17 9:26 p.m.•3 views

OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936)

9CVSS7.3AI score0.00565EPSS

Exploits0References4

OSV•added 2018/10/10 1:29 p.m.•0 views

CVE-2018-8511

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8503, CVE-2018-8505,...

7.5CVSS7.8AI score0.28809EPSS

Exploits0References3