Lucene search
K

19 matches found

Ubuntu
Ubuntu
added 2026/05/28 12:5 p.m.23 views

USN-8334-1: CRaC JDK 25 vulnerabilities

Thomas Beckers discovered that the JAXP component of CRaC JDK 25 did not correctly authenticate certain APIs. A remote unauthenticated attacker could possibly use this issue to gain unauthorized access to sensitive information. CVE-2026-22016 It was discovered that the Networking component of CRa...

7.5CVSS7.3AI score0.00702EPSS
Exploits0
OSV
OSV
added 2026/05/28 11:57 a.m.19 views

USN-8332-1 openjdk-17-crac vulnerabilities

Thomas Beckers discovered that the JAXP component of CRaC JDK 17 did not correctly authenticate certain APIs. A remote unauthenticated attacker could possibly use this issue to gain unauthorized access to sensitive information. CVE-2026-22016 It was discovered that the Networking component of CRa...

7.5CVSS7.2AI score0.00702EPSS
Exploits0References9
OSV
OSV
added 2026/02/02 6:10 p.m.6 views

USN-7997-1 openjdk-17-crac vulnerabilities

It was discovered that the RMI component of CRaC JDK 17 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6.6AI score0.00864EPSS
Exploits1References5
OSV
OSV
added 2026/02/02 6:5 p.m.6 views

USN-7996-1 openjdk-25-crac vulnerabilities

It was discovered that the RMI component of CRaC JDK 25 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6.6AI score0.00864EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/12/02 12:0 a.m.5 views

Ubuntu 25.10 : CRaC JDK 25 vulnerabilities (USN-7902-1)

The remote Ubuntu 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7902-1 advisory. Jinfeng Guo discovered that the Security component of CRaC JDK 25 did not correctly handle certain representations of encoded strings. An unauthenticated...

7.5CVSS7.4AI score0.00633EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/02 12:0 a.m.4 views

Ubuntu 25.04 / 25.10 : CRaC JDK 17 vulnerabilities (USN-7900-1)

The remote Ubuntu 25.04 / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7900-1 advisory. Jinfeng Guo discovered that the Security component of CRaC JDK 17 did not correctly handle certain representations of encoded strings. An...

7.5CVSS7.4AI score0.00633EPSS
Exploits0References3
OSV
OSV
added 2025/12/01 2:48 p.m.7 views

USN-7902-1 openjdk-25-crac vulnerabilities

Jinfeng Guo discovered that the Security component of CRaC JDK 25 did not correctly handle certain representations of encoded strings. An unauthenticated remote attacker could possibly use this issue to modify files or leak sensitive information. CVE-2025-53057 Darius Bohni discovered that the JA...

7.5CVSS6.7AI score0.00633EPSS
Exploits0References4
OSV
OSV
added 2025/12/01 2:42 p.m.6 views

USN-7901-1 openjdk-21-crac vulnerabilities

Jinfeng Guo discovered that the Security component of CRaC JDK 21 did not correctly handle certain representations of encoded strings. An unauthenticated remote attacker could possibly use this issue to modify files or leak sensitive information. CVE-2025-53057 Darius Bohni discovered that the JA...

7.5CVSS6.7AI score0.00633EPSS
Exploits0References4
OSV
OSV
added 2025/12/01 2:37 p.m.6 views

USN-7900-1 openjdk-17-crac vulnerabilities

Jinfeng Guo discovered that the Security component of CRaC JDK 17 did not correctly handle certain representations of encoded strings. An unauthenticated remote attacker could possibly use this issue to modify files or leak sensitive information. CVE-2025-53057 Darius Bohni discovered that the JA...

7.5CVSS6.7AI score0.00633EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/12/01 2:37 p.m.6 views

USN-7900-1: CRaC JDK 17 vulnerabilities

Jinfeng Guo discovered that the Security component of CRaC JDK 17 did not correctly handle certain representations of encoded strings. An unauthenticated remote attacker could possibly use this issue to modify files or leak sensitive information. CVE-2025-53057 Darius Bohni discovered that the JA...

7.5CVSS7.4AI score0.00633EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/07/30 12:0 a.m.8 views

Ubuntu 25.04 : CRaC JDK 17 vulnerabilities (USN-7672-1)

The remote Ubuntu 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7672-1 advisory. It was discovered that the 2D component of CRaC JDK 17 did not properly manage memory under certain circumstances. An attacker could possibly use this issue ...

8.6CVSS6.7AI score0.01058EPSS
Exploits1References5
OSV
OSV
added 2025/07/28 2:14 a.m.4 views

USN-7673-1 openjdk-21-crac vulnerabilities

It was discovered that the 2D component of CRaC JDK 21 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2025-30749, CVE-2025-50106 VMashroor Hasan Bhuiyan discovered that the JSSE...

8.6CVSS6.9AI score0.01058EPSS
Exploits1References5
Ubuntu
Ubuntu
added 2025/07/28 2:14 a.m.4 views

USN-7673-1: CRaC JDK 21 vulnerabilities

It was discovered that the 2D component of CRaC JDK 21 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2025-30749, CVE-2025-50106 VMashroor Hasan Bhuiyan discovered that the JSSE...

8.6CVSS6.9AI score0.01058EPSS
Exploits1
OSV
OSV
added 2025/07/28 2:7 a.m.5 views

USN-7672-1 openjdk-17-crac vulnerabilities

It was discovered that the 2D component of CRaC JDK 17 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2025-30749, CVE-2025-50106 VMashroor Hasan Bhuiyan discovered that the JSSE...

8.6CVSS6.9AI score0.01058EPSS
Exploits1References5
OSV
OSV
added 2025/05/26 3:29 a.m.11 views

USN-7531-1 openjdk-21-crac vulnerabilities

Alicja Kario discovered that the JSSE component of CRaC JDK 21 incorrectly handled RSA padding. An Attacker could possibly use this issue to obtain sensitive information. CVE-2025-21587 It was discovered that the Compiler component of CRaC JDK 21 incorrectly handled compiler transformations. An...

7.4CVSS6.9AI score0.0073EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/26 12:0 a.m.5 views

Ubuntu 24.10 / 25.04 : CRaC JDK 17 vulnerabilities (USN-7533-1)

The remote Ubuntu 24.10 / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7533-1 advisory. Alicja Kario discovered that the JSSE component of CRaC JDK 17 incorrectly handled RSA padding. An attacker could possibly use this issue to obtain...

7.4CVSS6.9AI score0.0073EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2025/03/11 1:12 a.m.12 views

USN-7339-1: CRaC JDK 21 vulnerabilities

Andy Boothe discovered that the Networking component of CRaC JDK 21 did not properly handle access under certain circumstances. An unauthenticated attacker could possibly use this issue to cause a denial of service. CVE-2024-21208 It was discovered that the Hotspot component of CRaC JDK 21 did no...

4.8CVSS6.7AI score0.01157EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/11 12:0 a.m.6 views

Ubuntu 24.10 : CRaC JDK 17 vulnerabilities (USN-7338-1)

The remote Ubuntu 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7338-1 advisory. Andy Boothe discovered that the Networking component of CRaC JDK 17 did not properly handle access under certain circumstances. An unauthenticated attacker...

4.8CVSS6.6AI score0.01157EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/03/11 12:0 a.m.4 views

Ubuntu 24.10 : CRaC JDK 21 vulnerabilities (USN-7339-1)

The remote Ubuntu 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7339-1 advisory. Andy Boothe discovered that the Networking component of CRaC JDK 21 did not properly handle access under certain circumstances. An unauthenticated attacker...

4.8CVSS6.6AI score0.01157EPSS
Exploits0References6
Rows per page
Query Builder