Lucene search
K

1309 matches found

AlpineLinux
AlpineLinux
added 2020/04/15 1:29 p.m.36 views

CVE-2020-2757

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.3CVSS4.7AI score0.04211EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/04/14 10:33 p.m.51 views

CVE-2020-2781

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to...

5CVSS1.1AI score0.04948EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/04/14 10:33 p.m.33 views

CVE-2020-2778

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability...

4.3CVSS1.4AI score0.02298EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/04/14 9:33 p.m.59 views

CVE-2020-2754

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Scripting. Supported versions that are affected are Java SE: 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS2.5AI score0.04128EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2020/04/14 12:0 a.m.8 views

PT-2020-2595

Name of the Vulnerable Software and Affected Versions Java SE versions 11.0.6 and 14 Description The issue is related to insufficient access control in the JSSE component of Oracle Java SE, allowing a remote attacker to gain unauthorized access to protected information via the HTTPS protocol. Thi...

4.3CVSS6.8AI score0.03159EPSS
Exploits0References142
Positive Technologies
Positive Technologies
added 2020/04/14 12:0 a.m.7 views

PT-2020-2600

Name of the Vulnerable Software and Affected Versions Java SE versions 7u251, 8u241, 11.0.6, and 14 Java SE Embedded version 8u241 Description The issue is related to insufficient input validation in the Concurrency component of Oracle Java SE and Java SE Embedded. This can be exploited by an...

6.5CVSS7.1AI score0.04948EPSS
Exploits0References286
Veracode
Veracode
added 2020/04/10 12:59 a.m.16 views

Privilege Escalation

ibm java is vulnerable to privilege escalation. A flaw was found in the way JAXP Java API for XML Processing components were handled, allowing them to be manipulated by untrusted applets. This could be used to elevate privileges and bypass secure XML processing restrictions...

5CVSS2.5AI score0.03475EPSS
Exploits0References19Affected Software1
Veracode
Veracode
added 2020/04/10 12:57 a.m.32 views

Unspecified Vulnerability

IBM Java Runtime Environment has unspecified vulnerability, allowing remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors...

10CVSS7.1AI score0.8316EPSS
Exploits11References13Affected Software1
Veracode
Veracode
added 2020/04/10 12:57 a.m.37 views

Unspecified Vulnerability

IBM Java Runtime Environment has unspecified vulnerability, allowing remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors...

2.6CVSS7.1AI score0.02407EPSS
Exploits0References24Affected Software2
Veracode
Veracode
added 2020/04/10 12:37 a.m.28 views

Arbitrary Code Execution

java is vulnerable to arbitrary code execution. Remote attackers are able to execute arbitrary code via unknown vectors relsted to deserializing applets...

6.4CVSS7.6AI score0.04519EPSS
Exploits0References32Affected Software1
Veracode
Veracode
added 2020/04/10 12:30 a.m.35 views

Privilege Escalation

java is vulnerable to privilege escalation. The vulnerability exists as a flaw in the Java Runtime Environment Virtual Machine code generation functionality could allow untrusted applets to extend their privileges. An untrusted applet could extend its privileges, allowing it to read and write loc...

6.4CVSS3.7AI score0.04574EPSS
Exploits0References30Affected Software1
RedhatCVE
RedhatCVE
added 2020/04/07 11:26 a.m.59 views

CVE-2019-2988

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS4.5AI score0.03284EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/04/05 5:5 p.m.40 views

CVE-2019-2745

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 7u221, 8u212 and 11.0.3. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Java SE executes to compromise Java...

5.1CVSS5.1AI score0.0046EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/03/01 7:36 p.m.51 views

CVE-2019-2999

Vulnerability in the Java SE product of Oracle Java SE component: Javadoc. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

4.7CVSS2.8AI score0.0267EPSS
Exploits0References3
Amazon
Amazon
added 2020/02/17 12:0 a.m.85 views

Important: java-1.8.0-openjdk

Issue Overview: Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with netwo...

8.1CVSS7.4AI score0.04903EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/01/31 10:43 p.m.51 views

CVE-2019-2684

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: RMI. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.9CVSS1.6AI score0.37618EPSS
Exploits0References3
Prion
Prion
added 2020/01/15 5:15 p.m.25 views

Design/Logic Flaw

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u241 and 8u231; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols...

4.3CVSS4AI score0.04202EPSS
Exploits0References19Affected Software15
UbuntuCve
UbuntuCve
added 2020/01/15 5:15 p.m.36 views

CVE-2020-2583

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.3CVSS6.8AI score0.0404EPSS
Exploits0References3
OSV
OSV
added 2020/01/15 5:15 p.m.3 views

UBUNTU-CVE-2020-2585

Vulnerability in the Java SE product of Oracle Java SE component: JavaFX. The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

5.9CVSS6.9AI score0.03321EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2020/01/15 4:34 p.m.44 views

CVE-2020-2659

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u241 and 8u231; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols...

4.3CVSS4.7AI score0.04202EPSS
Exploits0
Rows per page
Query Builder