CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2023/07/19 5:24 p.m.•3 views

OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

3.7CVSS7.2AI score0.01316EPSS

RedHat Linux•added 2023/07/19 5:24 p.m.•6 views

OpenJDK: weakness in AES implementation (8308682)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2;...

5.1CVSS7.5AI score0.00483EPSS

RedHat Linux•added 2023/07/19 5:21 p.m.•3 views

OpenJDK: array indexing integer overflow issue (8304468)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6,...

3.7CVSS7.2AI score0.01164EPSS

RedHat Linux•added 2023/07/19 5:21 p.m.•4 views

OpenJDK: weakness in AES implementation (8308682)

5.1CVSS7.5AI score0.00483EPSS

RedHat Linux•added 2023/07/19 5:19 p.m.•3 views

OpenJDK: ZIP file parsing infinite loop (8302483)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Utility. Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM...

3.7CVSS7.2AI score0.01108EPSS

RedHat Linux•added 2023/07/19 5:19 p.m.•5 views

OpenJDK: HTTP client insufficient file name validation (8302475)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle...

3.1CVSS7.3AI score0.00866EPSS

RedHat Linux•added 2023/07/19 5:19 p.m.•5 views

OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

3.7CVSS7.2AI score0.01316EPSS

RedHat Linux•added 2023/07/19 5:19 p.m.•3 views

OpenJDK: modulo operator array indexing issue (8304460)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371-perf, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 21.3.6, 22.3.2; Oracle GraalVM for...

3.7CVSS7.4AI score0.01127EPSS

RedhatCVE•added 2023/07/19 1:43 p.m.•37 views

CVE-2023-22049

3.7CVSS3.8AI score0.01316EPSS

RedhatCVE•added 2023/07/19 1:43 p.m.•75 views

CVE-2023-22045

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6,...

3.7CVSS3.6AI score0.01164EPSS

RedhatCVE•added 2023/07/19 1:43 p.m.•35 views

CVE-2023-22041

5.1CVSS4.7AI score0.00483EPSS

RedhatCVE•added 2023/07/19 1:43 p.m.•24 views

CVE-2023-22044

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371-perf, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 21.3.6, 22.3.2; Oracle GraalVM for...

3.7CVSS2.7AI score0.01127EPSS

RedhatCVE•added 2023/07/19 1:43 p.m.•40 views

CVE-2023-22036

3.7CVSS4.2AI score0.01108EPSS

RedhatCVE•added 2023/07/19 1:43 p.m.•32 views

CVE-2023-22006

3.1CVSS3.8AI score0.00866EPSS

Amazon•added 2023/07/19 12:0 a.m.•7 views

Medium: java-1.8.0-amazon-corretto

Issue Overview: 2023-07-20: The severity level was changed from low to medium. Vulnerability in Oracle Java SE component: JavaFX. The supported version that is affected is Oracle Java SE: 8u371. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.9CVSS5.2AI score0.01316EPSS

NCSC•added 2023/07/19 12:0 a.m.•4 views

Vulnerabilities fixed in Oracle Java SE

Vulnerabilities have been fixed in Oracle Java SE products. A malicious party could exploit the vulnerabilities to gain access to sensitive data. The malicious party must trick the victim into executing untrusted Java code. Oracle has fixed the vulnerabilities in the following products: - Oracle...

7.5CVSS6.8AI score0.01797EPSS

Exploits5

Amazon•added 2023/07/19 12:0 a.m.•6 views

Medium: java-11-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6,...

7.5CVSS5.5AI score0.01797EPSS

Amazon•added 2023/07/19 12:0 a.m.•5 views

Medium: java-17-amazon-corretto

7.5CVSS5.3AI score0.01797EPSS

Amazon•added 2023/07/19 12:0 a.m.•77 views

Medium: java-11-amazon-corretto

7.5CVSS5.5AI score0.01797EPSS