Lucene search
K

19 matches found

OSV
OSV
added 2024/02/05 10:39 a.m.9 views

SUSE-SU-2024:0325-1 Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Updated to version 17.0.10 January 2024 CPU: - CVE-2024-20918: Fixed an out of bounds access in the Hotspot JVM due to a missing bounds check bsc1218907. - CVE-2024-20919: Fixed a sandbox bypass in the Hotspot JVM class file verifier...

7.5CVSS6.6AI score0.00911EPSS
Exploits0References13
OSV
OSV
added 2024/02/02 12:51 p.m.13 views

SUSE-SU-2024:0321-1 Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Updated to version 11.0.22 January 2024 CPU: - CVE-2024-20918: Fixed an out of bounds access in the Hotspot JVM due to a missing bounds check bsc1218907. - CVE-2024-20919: Fixed a sandbox bypass in the Hotspot JVM class file verifier...

7.4CVSS7AI score0.01026EPSS
Exploits0References13
OSV
OSV
added 2024/01/24 12:3 p.m.14 views

SUSE-SU-2024:0203-1 Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Updated to version 11.0.22 January 2024 CPU: - CVE-2024-20918: Fixed an out of bounds access in the Hotspot JVM due to a missing bounds check bsc1218907. - CVE-2024-20919: Fixed a sandbox bypass in the Hotspot JVM class file verifier...

7.4CVSS7AI score0.01026EPSS
Exploits0References13
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.69 views

K53146535: Multiple Sun Java vulnerabilities

Security Advisory Description CVE-2013-5870 Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX. CVE-2013-5878 Unspecified vulnerability in Oracle Java SE 6u65 and...

10CVSS7.5AI score0.08383EPSS
Exploits2
Veracode
Veracode
added 2019/05/02 4:56 a.m.28 views

Arbitrary Code Execution

java is vulnerable to arbitrary code execution. The vulnerability exists as MethodHandles in HotSpot JVM does not properly handle methods...

9.3CVSS5.9AI score0.0508EPSS
Exploits0References23Affected Software1
Fedora
Fedora
added 2015/06/10 7:7 p.m.25 views

[SECURITY] Fedora 21 Update: thermostat-1.0.6-2.fc21

Thermostat is a monitoring and instrumentation tool for the Hotspot JVM, with support for monitoring multiple JVM instances. The system is made up of two processes: an Agent, which collects data, and a Client which allows users to visualize this data. These components communicate via a...

4.4CVSS2.8AI score0.00507EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2015/02/15 12:0 a.m.2 views

Oracle Java PhantomReference Use After Free (CVE-2015-0395)

A memory corruption vulnerability exists in Oracle Java. The vulnerability is due to a use after free error when handling phantom object references in the Hotspot JVM garbage collector. Successful exploitation could result in arbitrary code execution in the context of the currently logged-in user...

9.3CVSS2.5AI score0.05909EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/02/02 12:0 a.m.34 views

Oracle Java SE JRE Multiple Unspecified Vulnerabilities-01 (Feb 2015) - Windows

Oracle Java SE JRE is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS3.9AI score0.04577EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2015/02/02 12:0 a.m.32 views

Oracle Java SE JRE Multiple Unspecified Vulnerabilities-01 (Feb 2015) - Linux

Oracle Java SE JRE is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS3.9AI score0.04577EPSS
Exploits0References5
Fedora
Fedora
added 2015/01/08 7:2 a.m.23 views

[SECURITY] Fedora 20 Update: thermostat-1.0.6-1.fc20

Thermostat is a monitoring and instrumentation tool for the Hotspot JVM, with support for monitoring multiple JVM instances. The system is made up of two processes: an Agent, which collects data, and a Client which allows users to visualize this data. These components communicate via a...

4.4CVSS2.8AI score0.00345EPSS
Exploits0
Fedora
Fedora
added 2015/01/08 7:1 a.m.24 views

[SECURITY] Fedora 21 Update: thermostat-1.0.6-1.fc21

Thermostat is a monitoring and instrumentation tool for the Hotspot JVM, with support for monitoring multiple JVM instances. The system is made up of two processes: an Agent, which collects data, and a Client which allows users to visualize this data. These components communicate via a...

4.4CVSS2.8AI score0.00345EPSS
Exploits0
NVD
NVD
added 2014/01/15 4:8 p.m.20 views

CVE-2013-5893

Unspecified vulnerability in Oracle Java SE 7u45 and Java SE Embedded 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented...

9.3CVSS4.4AI score0.0508EPSS
Exploits0References20
Prion
Prion
added 2014/01/15 4:8 p.m.25 views

Design/Logic Flaw

Unspecified vulnerability in Oracle Java SE 7u45 and Java SE Embedded 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented...

9.3CVSS5.9AI score0.0508EPSS
Exploits0References20Affected Software2
Cvelist
Cvelist
added 2014/01/15 1:33 a.m.24 views

CVE-2013-5893

Unspecified vulnerability in Oracle Java SE 7u45 and Java SE Embedded 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented...

4.4AI score0.0508EPSS
Exploits0References20
CVE
CVE
added 2014/01/15 1:33 a.m.217 views

CVE-2013-5893

CVE-2013-5893 affects Oracle Java SE 7u45 (and Java Embedded 7u45) and OpenJDK 7. The vulnerability is described as unspecified but exploitable via unknown vectors related to Libraries, with notes that it may relate to improper handling of MethodHandles in HotSpot JVM, potentially escaping the sa...

9.3CVSS4.3AI score0.0508EPSS
Exploits0References20Affected Software2
UbuntuCve
UbuntuCve
added 2014/01/15 12:0 a.m.30 views

CVE-2013-5893

Unspecified vulnerability in Oracle Java SE 7u45 and Java SE Embedded 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented...

9.3CVSS6.5AI score0.0508EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/03/09 12:0 a.m.48 views

Ubuntu 10.10 : openjdk-6b18 vulnerabilities (USN-1079-3)

USN-1079-2 fixed vulnerabilities in OpenJDK 6 for armel ARM architectures in Ubuntu 9.10 and Ubuntu 10.04 LTS. This update fixes vulnerabilities in OpenJDK 6 for armel ARM architectures for Ubuntu 10.10. It was discovered that untrusted Java applets could create domain name resolution cache...

10CVSS6.4AI score0.2349EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2013/03/09 12:0 a.m.41 views

Ubuntu 9.10 / 10.04 LTS : openjdk-6b18 vulnerabilities (USN-1079-2)

USN-1079-1 fixed vulnerabilities in OpenJDK 6 for non-armel ARM architectures. This update provides the corresponding updates for OpenJDK 6 for use with the armel ARM architectures. In order to build the armel ARM OpenJDK 6 update for Ubuntu 10.04 LTS, it was necessary to rebuild binutils and...

10CVSS6.4AI score0.2349EPSS
Exploits2References10
Ubuntu
Ubuntu
added 2011/03/01 7:58 a.m.88 views

USN-1079-1: OpenJDK 6 vulnerabilities

It was discovered that untrusted Java applets could create domain name resolution cache entries, allowing an attacker to manipulate name resolution within the JVM. CVE-2010-4448 It was discovered that the Java launcher did not did not properly setup the LDLIBRARYPATH environment variable. A local...

10CVSS6.4AI score0.2349EPSS
Exploits2
Rows per page
Query Builder