CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

IBM Security Bulletins•added 2024/08/08 5:17 p.m.•52 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for July 2024.

Summary In addition to many OS level updates, multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 21.0.3-IF035 and 24.0.0-IF001. Vulnerability Details CVEID:CVE-2024-21094 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could...

8.7CVSS9.9AI score0.02733EPSS

Exploits4Affected Software2

Redos•added 2024/08/02 12:0 a.m.•11 views

ROS-20240801-04

A vulnerability in the JSSE component of the Java SE software platform and Oracle GraalVM for JDK virtual machine is related to errors in certificate authentication procedure. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service A vulnerability in the CORBA...

5.3CVSS5.3AI score0.014EPSS

Redos•added 2024/08/02 12:0 a.m.•23 views

ROS-20240801-02

A vulnerability in the JSSE component of the Java SE software platform and Oracle GraalVM for JDK virtual machine is related to errors in certificate authentication procedure. Exploitation of the vulnerability could Allow a remote attacker to cause a denial of service A vulnerability in the CORBA...

5.3CVSS6.9AI score0.014EPSS

IBM Security Bulletins•added 2024/07/31 12:22 p.m.•27 views

Security Bulletin: Multiple vulnerabilities affect IBM® SDK, Java™ Technology Edition for Content Collector for Email, Content Collector for File Systems and Content Collector for Microsoft SharePoint

Summary CVE-2024-20918, CVE-2024-20921 and CVE-2023-33850 were disclosed in the Oracle 2024 Critical Patch Update. Vulnerability Details CVEID:CVE-2024-20918 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause high confidentialit...

7.5CVSS6.7AI score0.00911EPSS

Exploits0Affected Software1

UbuntuCve•added 2024/07/31 12:0 a.m.•18 views

CVE-2024-21131

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0....

3.7CVSS6.8AI score0.00953EPSS

UbuntuCve•added 2024/07/31 12:0 a.m.•21 views

CVE-2024-21144

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Concurrency. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23; Oracle GraalVM Enterprise Edition: 20.3.14 and 21.3.10. Difficult to exploit vulnerability...

3.7CVSS6.8AI score0.01056EPSS

Exploits0References7

UbuntuCve•added 2024/07/31 12:0 a.m.•24 views

CVE-2024-21138

3.7CVSS6.8AI score0.01257EPSS

UbuntuCve•added 2024/07/31 12:0 a.m.•22 views

CVE-2024-21145

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0.1;...

4.8CVSS6.8AI score0.00864EPSS

UbuntuCve•added 2024/07/31 12:0 a.m.•38 views

CVE-2024-21140

4.8CVSS6.8AI score0.00879EPSS

OSV•added 2024/07/31 12:0 a.m.•1 views

UBUNTU-CVE-2024-21138

3.7CVSS6.7AI score0.01257EPSS

OSV•added 2024/07/31 12:0 a.m.•1 views

UBUNTU-CVE-2024-21140

4.8CVSS6.7AI score0.00879EPSS

OSV•added 2024/07/31 12:0 a.m.•1 views

UBUNTU-CVE-2024-21131

3.7CVSS6.7AI score0.00953EPSS

OSV•added 2024/07/31 12:0 a.m.•5 views

UBUNTU-CVE-2024-21144

3.7CVSS6.7AI score0.01056EPSS

Exploits0References8

OSV•added 2024/07/31 12:0 a.m.•2 views

UBUNTU-CVE-2024-21147

7.4CVSS6.8AI score0.01136EPSS

OSV•added 2024/07/31 12:0 a.m.•0 views

UBUNTU-CVE-2024-21145

4.8CVSS6.7AI score0.00864EPSS

Redos•added 2024/07/30 12:0 a.m.•8 views

ROS-20240730-18

A vulnerability in the Hotspot component of the Oracle Java SE software platform and Oracle GraalVM Virtual Machines for JDK and Oracle GraalVM Enterprise Edition exists due to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to impact the...

7.4CVSS7.4AI score0.00911EPSS

Redos•added 2024/07/30 12:0 a.m.•12 views

ROS-20240730-17

7.5CVSS7.3AI score0.00911EPSS

Redos•added 2024/07/30 12:0 a.m.•29 views

ROS-20240730-14

A vulnerability in the Hotspot component of the Oracle Java SE software platform and Oracle GraalVM virtual machines for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to the lack of service data protection. Exploitation exploitation of the vulnerability could allow an...

7.4CVSS6.6AI score0.01026EPSS

Redos•added 2024/07/30 12:0 a.m.•9 views

ROS-20240730-16

7.4CVSS7.4AI score0.01026EPSS