CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.3CVSS6.2AI score0.014EPSS

TencentOS Server 4: java-8-konajdk (TSSA-2024:1000)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1000 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

5.9CVSS6.7AI score0.03566EPSS

TencentOS Server 3: java-8-konajdk (TSSA-2022:0163)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0163 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Exploits0References3

5.3CVSS6.5AI score0.01836EPSS

TencentOS Server 3: java-11-konajdk (TSSA-2023:0032)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0032 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Exploits0References3

5.3CVSS6.3AI score0.014EPSS

TencentOS Server 2: java-11-openjdk (TSSA-2023:0271)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0271 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

Exploits0References2

IBM Security Bulletins•added 2025/06/13 11:3 a.m.•5 views

Security Bulletin: An unspecified vulnerability in Java SE related to the Server: DDL component could allow a remote attacker to cause high confidentiality. (CVE-2025-21587, CVE-2025-30698, CVE-2025-4447) affect IBM PowerVM Novalink.

Summary An unspecified vulnerability in Java SE related to the Server: DDL component could allow a remote attacker to cause high confidentiality and high integrity impact. IBM PowerVM Novalink has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2025-21587 DESCRIPTION: An unspecifie...

7.8CVSS6.6AI score0.00749EPSS

Exploits0Affected Software1

RedHat Linux•added 2025/06/03 12:37 a.m.•20 views

Important: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.8CVSS6.7AI score0.00749EPSS

RedHat Linux•added 2025/06/03 12:37 a.m.•3 views

openjdk: Better TLS connection support (Oracle CPU 2025-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE:8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK:17.0.14, 21.0.6, 24; Oracle...

7.4CVSS6.7AI score0.00749EPSS

RedHat Linux•added 2025/06/03 12:37 a.m.•1 views

openjdk: Enhance Buffered Image handling (Oracle CPU 2025-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK: 17.0.14, 21.0.6, 24; Oracle...

5.6CVSS7.4AI score0.00548EPSS

RedhatCVE•added 2025/05/23 10:15 a.m.•8 views

CVE-2024-21004

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u401; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult to exploit vulnerability allows unauthenticated...

2.5CVSS2.4AI score0.00354EPSS

RedhatCVE•added 2025/05/23 10:15 a.m.•5 views

CVE-2024-21002

2.5CVSS2.4AI score0.00354EPSS

RedhatCVE•added 2025/05/23 10:15 a.m.•4 views

CVE-2024-21005

3.1CVSS2.6AI score0.00853EPSS

RedhatCVE•added 2025/05/23 9:36 a.m.•8 views

CVE-2024-20925

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows unauthenticated...

3.1CVSS2.4AI score0.00553EPSS

RedhatCVE•added 2025/05/23 8:26 a.m.•4 views

CVE-2024-21003

3.1CVSS4.3AI score0.00863EPSS

RedhatCVE•added 2025/05/23 7:48 a.m.•8 views

CVE-2024-20923

3.1CVSS2.2AI score0.00601EPSS

RedhatCVE•added 2025/05/22 3:25 p.m.•6 views

CVE-2020-2764

Vulnerability in the Java SE product of Oracle Java SE component: Advanced Management Console. The supported version that is affected is Java Advanced Management Console: 2.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

4.3CVSS5AI score0.02446EPSS

Exploits0

RedhatCVE•added 2025/05/21 8:2 p.m.•15 views

CVE-2009-2717

The Abstract Window Toolkit AWT implementation in Sun Java SE 6 before Update 15 on Windows 2000 Professional does not provide a Security Warning Icon, which makes it easier for context-dependent attackers to trick a user into interacting unsafely with an untrusted applet...

6.8CVSS6.6AI score0.01336EPSS

RedHat Linux•added 2025/05/21 8:33 a.m.•4 views

openjdk: Better TLS connection support (Oracle CPU 2025-04)

7.4CVSS6.7AI score0.00749EPSS

RedHat Linux•added 2025/05/21 8:33 a.m.•5 views

openjdk: Enhance Buffered Image handling (Oracle CPU 2025-04)

5.6CVSS7.4AI score0.00548EPSS