CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2024/02/19 6:2 p.m.•2 views

OpenJDK: IOR deserialization issue in CORBA (8303384)

5.3CVSS7.1AI score0.00172EPSS

Exploits0References4

OSV•added 2023/11/17 11:6 a.m.•3 views

OESA-2023-1839 openjdk-1.8.0 security update

The OpenJDK runtime environment 8. Security Fixes: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: CORBA. Supported versions that are affected are Oracle Java SE: 8u381, 8u381-perf; Oracle GraalVM Enterprise Edition: 20.3.11 and 21.3.7...

5.3CVSS5.7AI score0.00172EPSS

Exploits0References3

Amazon•added 2023/11/03 12:0 a.m.•2 views

Important: java-1.8.0-amazon-corretto

Issue Overview: An issue was discovered in function ciMethodBlocks::makeblockat in Oracle JDK HotSpot VM 11, 17 and OpenJDK HotSpot VM 8, 11, 17, allows attackers to cause a denial of service. CVE-2022-40433 Vulnerability in Oracle Java SE component: CORBA. Supported versions that are affected ar...

5.3CVSS6.9AI score0.00172EPSS

Exploits0

RedHat Linux•added 2023/10/18 10:39 p.m.•1 views

OpenJDK: IOR deserialization issue in CORBA (8303384)

5.3CVSS7.1AI score0.00172EPSS

Exploits0References4

IBM Security Bulletins•added 2019/12/18 2:26 p.m.•49 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM i

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is used by IBM i. Vulnerability Details CVEID: CVE-2015-2638 DESCRIPTION: An unspecified vulnerability related to the 2D component has complete confidentiality impact, complete integrity impact, and complete...

10CVSS0.6AI score0.66621EPSS

IBM Security Bulletins•added 2018/06/18 12:28 a.m.•42 views

Security Bulletin: July 2015 Java Platform Standard Edition Vulnerabilities in Multiple N series Products

Summary Multiple N series products incorporate the Oracle Java Platform, Standard Edition Java SE software libraries. Java SE JDK and JRE versions below 8u51, 7u85 and 6u101 and OpenJDK versions below 1.7.0.85 and 1.8.0.51 are susceptible to multiple vulnerabilities, potentially leading to an...

10CVSS0.8AI score0.66621EPSS

IBM Security Bulletins•added 2018/06/16 9:38 p.m.•30 views

Security Bulletin: Multiple vulnerabilities in IBM Java SD affect Guardium Data Redaction

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition version 6 that is used by Guardium Data Redaction. These issues were disclosed as part of the IBM Java SDK updates for October 2015. Vulnerability Details CVEID: CVE-2015-4844 DESCRIPTION: An unspecified vulnerability...

10CVSS1AI score0.18255EPSS

RedHat Linux•added 2017/05/09 4:41 p.m.•3 views

JDK: insecure use of invoke method in CORBA component, incorrect CVE-2013-3009 fix

The com.ibm.CORBA.iiop.ClientDelegate class in IBM SDK, Java Technology Edition 6 before SR16 FP25 6.0.16.25, 6 R1 before SR8 FP25 6.1.8.25, 7 before SR9 FP40 7.0.9.40, 7 R1 before SR3 FP40 7.1.3.40, and 8 before SR3 8.0.3.0 uses the invoke method of the java.lang.reflect.Method class in an...

Amazon•added 2016/09/15 12:0 a.m.•58 views

Important: java-1.6.0-openjdk

Issue Overview: An insufficient bytecode verification flaw was discovered in the Hotspot component in OpenJDK. An untrusted Java application or applet could use this flaw to completely bypass Java sandbox restrictions. CVE-2016-3606 Multiple denial of service flaws were found in the JAXP componen...

9.6CVSS7.7AI score0.07521EPSS

Exploits0

ArchLinux•added 2016/08/05 12:0 a.m.•58 views

jdk7-openjdk: multiple issues

CVE-2016-3458 sandbox restriction bypass It was discovered that the CORBA component of OpenJDK did not sufficiently restrict the use of custom ValueHandler when performing object deserialization. An untrusted Java application or applet could use this flaw to bypass certain Java sandbox...

9.3CVSS1AI score0.07521EPSS

Exploits0References8

OSV•added 2016/05/13 3:9 p.m.•7 views

SUSE-SU-2016:1303-1 Security update for java-1_6_0-ibm

This IBM Java 1.6.0 SR16 FP25 release fixes the following issues: Security issues fixed: - CVE-2016-0264: buffer overflow vulnerability in the IBM JVM bsc977648 - CVE-2016-0363: insecure use of invoke method in CORBA component, incorrect CVE-2013-3009 fix bsc977650 - CVE-2016-0376: insecure...

10CVSS7.1AI score0.93287EPSS

Exploits1References15

OSV•added 2016/05/13 10:22 a.m.•8 views

SUSE-SU-2016:1300-1 Security update for java-1_7_1-ibm

This IBM Java 1.7.1 SR3 FP40 relese fixes the following issues: Security issues fixed: - CVE-2016-0264: buffer overflow vulnerability in the IBM JVM bsc977648 - CVE-2016-0363: insecure use of invoke method in CORBA component, incorrect CVE-2013-3009 fix bsc977650 - CVE-2016-0376: insecure...

10CVSS7.1AI score0.93287EPSS

Exploits1References15

RedHat Linux•added 2016/05/11 2:9 p.m.•2 views

JDK: insecure use of invoke method in CORBA component, incorrect CVE-2013-3009 fix

RedHat Linux•added 2016/04/29 5:50 p.m.•2 views

JDK: insecure use of invoke method in CORBA component, incorrect CVE-2013-3009 fix

RedHat Linux•added 2016/04/29 5:50 p.m.•3 views

JDK: insecure use of invoke method in CORBA component, incorrect CVE-2013-3009 fix