CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2024/04/16 12:0 a.m.•5 views

PT-2024-4881

Name of the Vulnerable Software and Affected Versions: Oracle Java SE versions 8u401, 8u401-perf, 11.0.22 Oracle GraalVM Enterprise Edition versions 20.3.13, 21.3.9 Description: The issue is related to insufficient input validation in the Concurrency component of Oracle Java SE and Oracle GraalVM...

3.7CVSS6.8AI score0.01276EPSS

Exploits0References323

Positive Technologies•added 2024/04/16 12:0 a.m.•7 views

PT-2024-3726

Name of the Vulnerable Software and Affected Versions: Oracle Java SE versions 8u401, 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22 Oracle GraalVM for JDK versions 17.0.10, 21.0.2, 22 Oracle GraalVM Enterprise Edition versions 20.3.13, 21.3.9 Description: The issue is related to a difficult to exploit...

3.7CVSS6.8AI score0.01361EPSS

Exploits0References359

3.7CVSS6.3AI score0.00746EPSS

Oracle Java SE 安全漏洞

Oracle Java SE and Oracle GraalVM are both products of Oracle Corporation.Oracle Java SE is a product for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments.Oracle GraalVM is a suite of on-the-fly compilers written in the Java languag...

CNNVD•added 2024/04/16 12:0 a.m.•5 views

Oracle Java SE 安全漏洞

3.7CVSS6.5AI score0.01289EPSS

Positive Technologies•added 2024/04/16 12:0 a.m.•7 views

PT-2024-3533

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22 Oracle GraalVM for JDK versions 17.0.10, 21.0.2, 22 Oracle GraalVM Enterprise Edition version 21.3.9 Description The issue is related to errors in processing input data in the...

4.3CVSS6.8AI score0.01289EPSS

Exploits0References367

3.1CVSS6.7AI score0.00853EPSS

Oracle Java SE 和 Oracle GraalVM 安全漏洞

Oracle Java SE is a for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in Oracle Java SE for Oracle Java SE and Oracle GraalVM Enterprise Edition, which can be exploited by an attacker to gain...

CNNVD•added 2024/04/16 12:0 a.m.•5 views

Oracle Java SE 和Oracle GraalVM 安全漏洞

Oracle Java SE is a for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in Oracle Java SE for Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition. An attacker could exploit...

3.7CVSS6.6AI score0.00902EPSS

2.5CVSS6.6AI score0.00354EPSS

Oracle Java SE 安全漏洞

Positive Technologies•added 2024/04/16 12:0 a.m.•5 views

PT-2024-3735

Name of the Vulnerable Software and Affected Versions: Oracle Java SE versions 11.0.22, 17.0.10, 21.0.2, 22 Oracle GraalVM for JDK versions 17.0.10, 21.0.2, 22 Oracle GraalVM Enterprise Edition versions 20.3.13, 21.3.9 Description: The issue is related to a vulnerability in the Networking compone...

3.7CVSS6.8AI score0.00902EPSS

Exploits0References327

Positive Technologies•added 2024/04/16 12:0 a.m.•4 views

PT-2024-3739

Name of the Vulnerable Software and Affected Versions: Oracle Java SE version 8u401 Oracle GraalVM Enterprise Edition versions 20.3.13 and 21.3.9 Description: The issue is related to a vulnerability in the JavaFX component of Oracle Java SE and Oracle GraalVM Enterprise Edition, which is associat...

2.5CVSS6.9AI score0.00354EPSS

Exploits0References69

3.1CVSS6.7AI score0.00863EPSS

Oracle Java SE 安全漏洞

Broadcom•added 2024/04/16 12:0 a.m.•8 views

Oracle Java SE Multiple Vulnerabilities (July 2023 CPU)

Oracle Java SE Multiple Vulnerabilities July 2023 CPU CVE-2023-22041 Base Score: 5.1 MEDIUM Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2023-25193 Base Score: 7.5 HIGH Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-22045 Base Score: 3.7 LOW Vector:...

7.5CVSS6.8AI score0.01797EPSS

Kaspersky•added 2024/04/16 12:0 a.m.•65 views

KLA65636 Multiple vulnerabilities in Oracle Java SE and GraalVM

Multiple vulnerabilities were found in Oracle Java SE and GraalVM. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Code execution vulnerability in JavaFX can be...

8.8CVSS9.4AI score0.29179EPSS

Exploits3References3

IBM Security Bulletins•added 2024/04/08 5:29 p.m.•42 views

Security Bulletin: IBM Sterling Connect:Direct FTP+ is vulnerable to various attacks due to IBM Runtime Environment Java Technology Edition Version 17

Summary IBM Java 17 is used by IBM Sterling Connect:Direct FTP+ on AIX, Linux, and Windows platforms in product configuration and data transmission. IBM Sterling Connect:Direct FTP+ on AIX, Linux, and Windows platforms is impacted by vulnerabilities in IBM Java 17. IBM Sterling Connect:Direct FTP...

7.5CVSS6.9AI score0.01026EPSS

IBM Security Bulletins•added 2024/04/08 5:22 p.m.•37 views

Security Bulletin: IBM Sterling Connect:Direct for UNIX is vulnerable to unspecified vulnerabilities and sensitive information exposure due to IBM Runtime Environment Java Technology Edition Version 17

Summary IBM Java 17 is used by IBM Sterling Connect:Direct for UNIX in product configuration and management. IBM Sterling Connect:Direct for UNIX is impacted by unspecified vulnerabilities and sensitive information exposure due to IBM Java 17. IBM Sterling Connect:Direct for UNIX has upgraded IBM...

7.5CVSS7AI score0.01026EPSS

Tenable Nessus•added 2024/04/08 12:0 a.m.•49 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.7.1.7)

The version of AOS installed on the remote host is prior to 6.7.1.7. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.7.1.7 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE...

7.5CVSS6.6AI score0.01026EPSS

Exploits0References8

IBM Security Bulletins•added 2024/04/05 11:21 p.m.•30 views

Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Jan 2024 - Includes Oracle January 2024 CPU plus CVE-2023-33850

Summary IBM Copy Services Manager is vulnerable to an information disclosure threats CVE-2023-33850 and other vulnerabilities CVE-2024-20952, CVE-2024-20918, CVE-2024-20921, CVE-2024-20919, CVE-2024-20926, CVE-2024-20945, CVE-2023-33850 due to the use of IBM Java. IBM Java is used by CSM to provi...

7.5CVSS7.5AI score0.01026EPSS

IBM Security Bulletins•added 2024/04/05 4:20 p.m.•25 views

Security Bulletin: Multiple vulnerabilities in IBM Semeru Runtime may affect IBM Decision Optimization for IBM Cloud Pak for Data

Summary There are multiple vulnerabilities in IBM® Semeru Runtime Version 11 used by IBM Decision Optimization for IBM Cloud Pak for Data. IBM Decision Optimization for IBM Cloud Pak for Data has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2024-20932 DESCRIPTION: An unspecified...

7.5CVSS7AI score0.01026EPSS

IBM Security Bulletins•added 2024/04/05 1:47 p.m.•40 views

Security Bulletin: There is a vulnerability in Java SE used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2024-20918, CVE-2024-20926 and CVE-2024-20952)

Summary There is a vulnerability in Java SE used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2024-20918 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause high confidentialit...

7.4CVSS6.6AI score0.01026EPSS