Lucene search
K

14454 matches found

CNVD
CNVD
added 2022/01/24 12:0 a.m.45 views

Oracle Java SE Input Validation Error Vulnerability (CNVD-2022-15487)

Oracle Java SE is an Oracle Corporation USA product for developing and deploying Java applications on desktops, servers, and embedded devices and in real-time environments.Oracle Java SE is vulnerable to an input validation error that could be exploited by an attacker to cause an unauthorized...

5.3CVSS3AI score0.03782EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/24 12:0 a.m.31 views

Oracle Java SE Input Validation Error Vulnerability (CNVD-2022-15488)

Oracle Java SE is an Oracle Corporation USA product for developing and deploying Java applications on desktops, servers, and embedded devices and in real-time environments.Oracle Java SE is vulnerable to an input validation error that could be exploited by an attacker to cause an unauthorized...

5.3CVSS3AI score0.07748EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/24 12:0 a.m.23 views

Oracle Java SE Input Validation Error Vulnerability (CNVD-2022-15480)

Oracle Java SE is an Oracle company used to develop and deploy Java applications on desktops, servers, and embedded devices and in real-time environments. Oracle Java SE is vulnerable to an input validation error that can be exploited by attackers to cause a partial denial of service partial DOS...

5.3CVSS4.9AI score0.0335EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/24 12:0 a.m.32 views

Oracle Java SE Input Validation Error Vulnerability (CNVD-2022-15481)

Oracle Java SE, an Oracle company, is used to develop and deploy Java applications on desktops, servers, and embedded devices and in real-time environments. Edition accessible data for unauthorized update, insert, or delete access...

5.3CVSS4.9AI score0.02755EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2022/01/22 8:0 a.m.4 views

Vulnerability in the Oracle Java SE Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321 8u311 11.0.13; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments typically in clients running sandboxed Java Web Start applications or sandboxed Java applets that load and run untrusted code (e.g. code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component e.g. through a web service which supplies data to t

...

5.3CVSS6AI score0.02789EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/01/22 8:0 a.m.6 views

Vulnerability in the Oracle Java SE Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321 8u311 11.0.13 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update insert or delete access to some of Oracle Java SE Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments typically in clients running sandboxed Java Web Start applications or sandboxed Java applets that load and run untrusted code (e.g. code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component e.g. through a web service which supplies

...

4.3CVSS6AI score0.03763EPSS
Exploits0
Amazon
Amazon
added 2022/01/20 12:0 a.m.56 views

Important: java-1.8.0-openjdk

Issue Overview: Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows...

7.1CVSS5.7AI score0.14839EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/01/20 12:0 a.m.822 views

Oracle Java SE 1.7.0_331 / 1.8.0_321 / 1.11.0_14 / 1.17.0_2 Multiple Vulnerabilities (Unix January 2022 CPU)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is affected by multiple vulnerabilities as referenced in the January 2022 CPU advisory: - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D...

5.3CVSS6AI score0.08346EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2022/01/20 12:0 a.m.41 views

Oracle Linux 8 : java-17-openjdk (ELSA-2022-0161)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-0161 advisory. 1:17.0.2.0.8-4 - Fix FIPS issues in native code and with initialisation of java.security.Security - Related: rhbz2039366 1:17.0.2.0.8-3 - Update tapset...

5.3CVSS6.4AI score0.08346EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2022/01/20 12:0 a.m.90 views

Oracle Java SE 1.7.0_331 / 1.8.0_321 / 1.11.0_14 / 1.17.0_2 Multiple Vulnerabilities (January 2022 CPU)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is affected by multiple vulnerabilities as referenced in the January 2022 CPU advisory: - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D...

5.3CVSS6AI score0.08346EPSS
Exploits0References19
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/19 4:26 p.m.49 views

Security Bulletin: Multiple security vulnerabilities fixed in Cloud Pak for Automation components

Summary Cloud Pak for Automation has released cummulative security fixes addressing vulnerabilities in several of its components. Vulnerability Details CVEID: CVE-2021-37701 DESCRIPTION: Node.js tar module could allow a local attacker to execute arbitrary code on the system, caused by an arbitrar...

9.8CVSS10.2AI score0.50732EPSS
Exploits14Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.4 views

CVE-2022-21349

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 7u321, 8u311; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.5AI score0.03306EPSS
Exploits0References5
NVD
NVD
added 2022/01/19 12:15 p.m.18 views

CVE-2022-21349

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 7u321, 8u311; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS0.03306EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.3 views

CVE-2022-21360

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS6.5AI score0.03486EPSS
Exploits0References7
OSV
OSV
added 2022/01/19 12:15 p.m.4 views

DEBIAN-CVE-2022-21360

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS5.6AI score0.03486EPSS
Exploits0References1
OSV
OSV
added 2022/01/19 12:15 p.m.2 views

DEBIAN-CVE-2022-21366

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS5.8AI score0.03216EPSS
Exploits0References1
NVD
NVD
added 2022/01/19 12:15 p.m.26 views

CVE-2022-21366

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS0.03216EPSS
Exploits0References5
NVD
NVD
added 2022/01/19 12:15 p.m.20 views

CVE-2022-21365

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS0.03486EPSS
Exploits0References6
NVD
NVD
added 2022/01/19 12:15 p.m.22 views

CVE-2022-21360

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS0.03486EPSS
Exploits0References6
OSV
OSV
added 2022/01/19 12:15 p.m.28 views

CVE-2022-21349

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 7u321, 8u311; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.1AI score
Exploits0References4
Rows per page
Query Builder