CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2024/12/11 4:19 p.m.•4 views

JDK: HTTP client improper handling of maxHeaderSize (8328286)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23;...

3.7CVSS7.4AI score0.01018EPSS

RedHat Linux•added 2024/12/11 4:19 p.m.•2 views

JDK: Integer conversion error leads to incorrect range check (8332644)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23; Oracl...

4.8CVSS7.4AI score0.0095EPSS

RedHat Linux•added 2024/12/11 4:19 p.m.•2 views

JDK: Unbounded allocation leads to out-of-memory error (8331446)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23;...

3.7CVSS7.4AI score0.01157EPSS

RedHat Linux•added 2024/12/11 4:19 p.m.•20 views

Moderate: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

4.8CVSS6.7AI score0.01157EPSS

Exploits0References1

IBM Security Bulletins•added 2024/12/11 10:20 a.m.•30 views

Security Bulletin: Multiple vulnerabilities affect IBM® Semeru Runtime

Summary This bulletin for IBM Semeru Runtime covers all applicable Java SE CVEs published by OpenJDK as part of their October 2024 Vulnerability Advisory, plus CVE-2024-10917 and CVE-2024-9143. For more information please refer to OpenJDK's October 2024 Vulnerability Advisory and the X-Force...

5.3CVSS6.7AI score0.05966EPSS

IBM Security Bulletins•added 2024/12/10 4:40 p.m.•17 views

Security Bulletin: There are multiple vulnerabilities in IBM App Connect Enterprise due to IBM Semeru Runtime

Summary There are multiple vulnerabilities in IBM App Connect Enterprise due to IBM Semeru Runtime. Vulnerability Details CVEID:CVE-2024-21217 DESCRIPTION: An unspecified vulnerability in Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition related to the Serialization...

5.3CVSS8AI score0.05966EPSS

IBM Security Bulletins•added 2024/12/06 3:40 p.m.•16 views

Security Bulletin: Security vulnerabilities were discovered in IBM Java SE as shipped with IBM Security Directory Integrator.

Summary Multilple Security Vulnerabilities were addressed in IBM Java SE as shipped with IBM Security Directory Integrator Vulnerability Details CVEID:CVE-2024-21235 DESCRIPTION: Vulnerability in Java SE component: Hotspot. Difficult to exploit vulnerability allows unauthenticated attacker with...

5.3CVSS6.3AI score0.01157EPSS

IBM Security Bulletins•added 2024/12/02 4:25 p.m.•26 views

Security Bulletin: Multiple security vulnerabilities in IBM MQ affect IBM Robotic Process Automation

Summary Multiple security vulnerabilities in IBM MQ affect IBM Robotic Process Automation. IBM MQ is used by IBM Robotic Process Automation as a system queue. This bulletin identifies the fixes to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-40681 DESCRIPTION: IBM MQ Operator...

8.8CVSS7.6AI score0.54026EPSS

IBM Security Bulletins•added 2024/12/02 4:9 p.m.•18 views

Security Bulletin: Multiple vulnerabilities in RedHat UBI affect IBM Robotic Process Automation for Cloud Pak

Summary Multiple vulnerabilities in RedHat UBI affect IBM Robotic Process Automation for Cloud Pak. RedHat UBI is used as base imaged for IBM Robotic Process Automation for Cloud Pak images. This bulletin identifies the fixes required to address the vulnerabilites. Vulnerability Details...

9.1CVSS9.4AI score0.36081EPSS

Exploits1Affected Software1

OSV•added 2024/11/29 11:57 a.m.•9 views

OESA-2024-2489 openjdk-latest security update

The OpenJDK runtime environment. Security Fixes: Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows...

OSV•added 2024/11/29 11:57 a.m.•10 views

Exploits0References44

OESA-2024-2488 openjdk-latest security update

OSV•added 2024/11/29 11:56 a.m.•3 views

Exploits0References44

OESA-2024-2487 openjdk-latest security update

OSV•added 2024/11/29 11:56 a.m.•3 views

Exploits0References42

OESA-2024-2486 openjdk-latest security update

IBM Security Bulletins•added 2024/11/27 5:0 p.m.•42 views

Exploits0References44

Security Bulletin: Financial Transaction Manager v4 is impacted by multiple vulnerabilities in IBM Java SE

Summary Multiple vulnerabilities were addressed in Financial Transaction Manager v4.0.6.0 iFix4 Vulnerability Details CVEID:CVE-2024-21147 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause high confidentiality, high integrity...

7.5CVSS6.3AI score0.01372EPSS