6 matches found
K86435316: OpenJDK vulnerabilities CVE-2020-2585 and CVE-2020-2655
Security Advisory Description CVE-2020-2585 Vulnerability in the Java SE product of Oracle Java SE component: JavaFX. The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromi...
Amazon Linux 2 : java-11-amazon-corretto (ALAS-2020-1387)
The version of java-11-amazon-corretto installed on the remote host is prior to 11.0.6+10-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1387 advisory. Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supporte...
Oracle Java SE 1.7.0_251 / 1.8.0_241 / 1.11.0_6 / 1.13.0_2 Multiple Vulnerabilities (Jan 2020 CPU)
The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is prior to 7 Update 251, 8 Update 241, 11 Update 6, or 13 Update 2. It is, therefore, affected by multiple vulnerabilities: - Oracle Java SE and Java SE Embedded are prone to a severe division by zero,...
CVE-2020-2585
Vulnerability in the Java SE product of Oracle Java SE component: JavaFX. The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...
CVE-2020-2585
CVE-2020-2585 is referenced in connected security advisories as affecting Oracle Java SE (component JavaFX) with affected Java SE 8u231. The advisory notes that exploitation is difficult but possible by a network-access attacker through multiple protocols, potentially allowing unauthorized creati...
Important: java-11-amazon-corretto
Issue Overview: Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network...