CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2018/02/26 9:32 p.m.•1 views

OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols...

6.5CVSS7.3AI score0.00191EPSS

RedHat Linux•added 2018/01/22 8:40 p.m.•3 views

OpenJDK: ArrayBlockingQueue deserialization to an inconsistent state (Libraries, 8189284)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacke...

4.3CVSS7.3AI score0.0009EPSS

RedHat Linux•added 2018/01/22 8:40 p.m.•1 views

OpenJDK: GTK library loading use-after-free (AWT, 8185325)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

6.1CVSS7.4AI score0.00162EPSS

RedHat Linux•added 2018/01/18 9:55 p.m.•5 views

JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 (Security)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with...

7.4CVSS7.3AI score0.00414EPSS

Exploits0References5

RedHat Linux•added 2018/01/18 9:55 p.m.•2 views

OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)

4.3CVSS7.4AI score0.00095EPSS

RedHat Linux•added 2018/01/18 9:55 p.m.•2 views

JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 (Security)

7.4CVSS7.3AI score0.00414EPSS

Exploits0References5

OSV•added 2018/01/18 2:29 a.m.•1 views

CVE-2018-2633

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker...

8.3CVSS5.8AI score

Exploits0References22

OSV•added 2018/01/18 2:29 a.m.•2 views

CVE-2018-2634

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: JGSS. Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

6.8CVSS7.3AI score

Exploits0References21

RedHat Linux•added 2018/01/17 5:33 p.m.•2 views

OpenJDK: unbounded memory allocation during deserialization (AWT, 8190289)

4.3CVSS7.4AI score0.00095EPSS

RedHat Linux•added 2018/01/17 5:33 p.m.•1 views

OpenJDK: insufficient validation of the invokeinterface instruction (Hotspot, 8174962)

6.5CVSS7.3AI score0.00191EPSS

4.3CVSS9.1AI score0.0009EPSS

Unspecified Vulnerability in Oracle Java SE, Java SE Embedded and Jrockit (CNVD-2018-02245)

Oracle Java SE, Java SE Embedded, and JRockit are products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments; Java SE Embedded is a Java platform for developing...

OSV•added 2018/01/17 12:0 a.m.•1 views

UBUNTU-CVE-2018-2634

6.8CVSS6.7AI score0.00169EPSS

Exploits0References5

4.3CVSS8.9AI score0.00095EPSS

Oracle Java SE and Java SE Embedded Denial of Service Vulnerability (CNVD-2018-02215)

Oracle Java SE is the standard version of Oracle's Java platform for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. Java platform for embedded applications. A security vulnerability exists in the AWT subcomponent of the Java SE a...

CNVD•added 2018/01/17 12:0 a.m.•3 views

Unspecified Vulnerability in Oracle Java SE, Java SE Embedded and Jrockit (CNVD-2018-02240)

5.3CVSS9.1AI score0.0024EPSS

4.3CVSS9.1AI score0.0009EPSS

Unspecified Vulnerability in Oracle Java SE, Java SE Embedded and Jrockit (CNVD-2018-02243)

OSV•added 2018/01/17 12:0 a.m.•0 views

UBUNTU-CVE-2018-2582

6.5CVSS6.7AI score0.00191EPSS

Exploits0References3

OSV•added 2018/01/17 12:0 a.m.•0 views

UBUNTU-CVE-2018-2599

4.8CVSS6.6AI score0.0009EPSS

6.1CVSS9.1AI score0.00162EPSS

Unspecified Vulnerability in Oracle Java SE and Java SE Embedded (CNVD-2018-02213)

Oracle Java SE is a standard version of Oracle's Java platform for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. both Java SE and Java SE Embedded are components of Java SE Embedded is a Java platform for embedded systems. Java...

6.8CVSS9.2AI score0.00169EPSS

Unspecified Vulnerability in Oracle Java SE and Java SE Embedded (CNVD-2018-02211)

Oracle Java SE and Java SE Embedded are both products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments; Java SE Embedded is a Java platform for embedded system...