CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2023/04/25 3:11 a.m.•3 views

OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

3.7CVSS6.9AI score0.01036EPSS

RedHat Linux•added 2023/04/25 3:11 a.m.•5 views

OpenJDK: missing string checks for NULL characters (8296622)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to explo...

3.7CVSS7.2AI score0.01208EPSS

RedHat Linux•added 2023/04/25 2:58 a.m.•4 views

OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

3.7CVSS7.3AI score0.01208EPSS

RedHat Linux•added 2023/04/25 2:58 a.m.•3 views

OpenJDK: improper connection handling during TLS handshake (8294474)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit...

7.4CVSS7.2AI score0.01295EPSS

RedHat Linux•added 2023/04/25 2:58 a.m.•6 views

OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

3.7CVSS6.9AI score0.01036EPSS

RedHat Linux•added 2023/04/25 2:58 a.m.•6 views

OpenJDK: incorrect enqueue of references in garbage collector (8298191)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit...

5.9CVSS7.2AI score0.01421EPSS

RedHat Linux•added 2023/04/25 2:58 a.m.•5 views

OpenJDK: Swing HTML parsing issue (8296832)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable...

5.3CVSS7.2AI score0.02474EPSS

Exploits1References4

Tenable Nessus•added 2023/04/25 12:0 a.m.•32 views

RHEL 8 : java-1.8.0-openjdk (RHSA-2023:1905)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1905 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

Tenable Nessus•added 2023/04/25 12:0 a.m.•288 views

OpenJDK 8 <= 8u362 / 11.0.0 <= 11.0.18 / 17.0.0 <= 17.0.6 / 20.0.0 <= 20.0.0 Multiple Vulnerabilities (2023-04-18

The version of OpenJDK installed on the remote host is prior to 8 = 8u362 / 11.0.0 = 11.0.18 / 17.0.0 = 17.0.6 / 20.0.0 = 20.0.0. It is, therefore, affected by multiple vulnerabilities as referenced in the 2023-04-18 advisory. Please Note: Java CVEs do not always include OpenJDK versions, but are...

7.4CVSS6.4AI score0.02474EPSS

Tenable Nessus•added 2023/04/25 12:0 a.m.•28 views

RHEL 8 : java-11-openjdk (RHSA-2023:1895)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1895 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

Tenable Nessus•added 2023/04/25 12:0 a.m.•36 views

RHEL 8 : java-1.8.0-openjdk (RHSA-2023:1907)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1907 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

Tenable Nessus•added 2023/04/25 12:0 a.m.•23 views

AlmaLinux 8 : java-1.8.0-openjdk (ALSA-2023:1908)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:1908 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected a...

7.4CVSS6.4AI score0.02474EPSS

Tenable Nessus•added 2023/04/25 12:0 a.m.•34 views

RHEL 8 : java-17-openjdk (RHSA-2023:1891)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1891 advisory. The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixe...

Tenable Nessus•added 2023/04/25 12:0 a.m.•87 views

Exploits1References19

CentOS 7 : java-11-openjdk (RHSA-2023:1875)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1875 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affecte...

7.4CVSS6.4AI score0.02474EPSS

Tenable Nessus•added 2023/04/25 12:0 a.m.•62 views

Oracle Linux 7 : java-1.8.0-openjdk (ELSA-2023-1904)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-1904 advisory. 1:1.8.0.372.b07-1 - Update to shenandoah-jdk8u372-b07 GA - Update release notes for shenandoah-8u372-b07. - Require tzdata 2023c due to inclusion of...

Tenable Nessus•added 2023/04/25 12:0 a.m.•26 views

RHEL 8 : java-11-openjdk (RHSA-2023:1878)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1878 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

Tenable Nessus•added 2023/04/25 12:0 a.m.•29 views

RHEL 8 : java-17-openjdk (RHSA-2023:1890)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1890 advisory. The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixe...

Tenable Nessus•added 2023/04/25 12:0 a.m.•24 views

Exploits1References19

RHEL 8 : java-1.8.0-openjdk (RHSA-2023:1906)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1906 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...