Lucene search
K

14454 matches found

Positive Technologies
Positive Technologies
added 2022/01/18 12:0 a.m.7 views

PT-2022-6849

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u321, 8u311, 11.0.13, 17.0.1 Oracle GraalVM Enterprise Edition versions 20.3.4 and 21.3.0 Description The issue is related to an integer overflow in the Hotspot component of Oracle Java SE and Oracle GraalVM Enterprise...

5.3CVSS6.9AI score0.02755EPSS
Exploits0References221
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/14 10:21 p.m.21 views

Security Bulletin: IBM API Connect V5 is impacted by multiple vulnerabilities in Java SE (CVE-2020-14782)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-14782 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, low integrity impact,...

4.3CVSS4.6AI score0.02245EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2022/01/02 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for java-1.8.0-openjdk (EulerOS-SA-2021-2933)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.9AI score0.14839EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/12/31 12:0 a.m.46 views

EulerOS 2.0 SP5 : java-1.8.0-openjdk (EulerOS-SA-2021-2933)

According to the versions of the java-1.8.0-openjdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that...

5.3CVSS6.2AI score0.14839EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/21 8:6 p.m.39 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affects WebSphere Application Server October 2021 CPU that is bundled with IBM WebSphere Application Server Patterns

Summary There are multiple vulnerabilities in the IBM SDK Java Technology Edition that is shipped with IBM WebSphere Application Server. These issues were disclosed in the IBM Java SDK updates in October 2021. Vulnerability Details CVEID: CVE-2021-35560 DESCRIPTION: An unspecified vulnerability i...

9.8CVSS7.2AI score0.14839EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/21 5:38 p.m.32 views

Security Bulletin: IBM Event Streams is affected by multiple vulnerabilities in the Java runtime

Summary IBM Event Streams is affected by multiple vulnerabilities in the Java runtime Vulnerability Details CVEID: CVE-2021-2161 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, high...

7.5CVSS7.2AI score0.04008EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/18 1:58 a.m.40 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Performance Management products

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition used by IBM Performance Management. IBM Performance Management has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2020-14782 DESCRIPTION: An unspecified vulnerability in Java SE related to the Librari...

4.3CVSS4.9AI score0.02296EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/12/17 12:0 a.m.44 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : OpenJDK vulnerabilities (USN-5202-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5202-1 advisory. Varnavas Papaioannou discovered that the FTP client implementation in OpenJDK accepted alternate server IP addresses when...

7.5CVSS6.3AI score0.14839EPSS
Exploits0References15
Amazon
Amazon
added 2021/12/10 12:0 a.m.75 views

Important: java-1.8.0-openjdk

Issue Overview: Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows...

7.1CVSS5.7AI score0.14839EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/09 4:57 p.m.48 views

Security Bulletin: March 2021 : Multiple vulnerabilities in IBM Java Runtime affect CICS Transaction Gateway

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 7.0, 7.1 and 8.0 used by CICS Transaction Gateway. CICS Transaction Gateway has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2020-14803 DESCRIPTION: An unspecified vulnerability in Java SE cou...

9.8CVSS9.5AI score0.03122EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/09 4:57 p.m.30 views

Security Bulletin: March 2021 : Vulnerability in IBM Java Runtime affects CICS Transaction Gateway

Summary There is a vulnerability in IBM® Runtime Environment Java™ Versions 7.0, 7.1 and 8.0 used by CICS Transaction Gateway. CICS Transaction Gateway has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2020-14781 DESCRIPTION: An unspecified vulnerability in Java SE related to the...

4.3CVSS4.6AI score0.02296EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/09 4:57 p.m.43 views

Security Bulletin: Jan 2020 : Multiple vulnerabilities in IBM Java Runtime affect CICS Transaction Gateway

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 7.0, 7.1 and 8.0 used by CICS Transaction Gateway. CICS Transaction Gateway has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2020-2593 DESCRIPTION: An unspecified vulnerability in Java SE...

7.2CVSS7.7AI score0.04221EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2021/12/08 4:22 p.m.4 views

JDK: unspecified vulnerability fixed in 8u311 (Deployment)

Vulnerability in the Java SE product of Oracle Java SE component: Deployment. The supported version that is affected is Java SE: 8u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require...

7.5CVSS6.9AI score0.04495EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/12/08 4:22 p.m.52 views

Important: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.7AI score0.14839EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2021/12/08 4:22 p.m.2 views

OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.9AI score0.07819EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/02 9:41 p.m.154 views

Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities

Summary Security vulnerabilities have been addressed in IBM Cognos Analytics 11.1.7 Fix Pack 4 and IBM Cognos Analytics 11.2.1. Vulnerability Details CVEID: CVE-2015-2156 DESCRIPTION: Netty could allow a remote attacker to bypass restrictions, caused by the improper validation of characters in a...

9.8CVSS10.3AI score0.99019EPSS
Exploits26Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/02 4:45 p.m.64 views

Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition

Summary This bulletin covers all applicable Java SE CVEs published by Oracle as part of their October 2021 Critical Patch Update, except for CVE-2021-35550, CVE-2021-35561, and CVE-2021-35603, which will be covered by future bulletins. For more information please refer to Oracle's October 2021 CP...

9.8CVSS6.3AI score0.14839EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/02 4:9 p.m.52 views

Security Bulletin: Multiple vulnerabilities may affect IBM® Semeru Runtime

Summary This bulletin covers all applicable Java SE CVEs published by OpenJDK as part of their October 2021 Vulnerability Advisory, plus CVE-2021-41035. For more information please refer to OpenJDK's October 2021 Vulnerability Advisory and the X-Force database entries referenced below...

9.8CVSS5.9AI score0.14839EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2021/11/30 2:52 p.m.40 views

CVE-2021-35560

Vulnerability in the Java SE product of Oracle Java SE component: Deployment. The supported version that is affected is Java SE: 8u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require...

7.5CVSS2.9AI score0.04495EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2021/11/25 8:58 a.m.83 views

Security Bulletin: Vulnerabilities affect IBM Netcool Agile Service Manager

Summary Vulnerabilities exist in IBM Netcool Agile Service Manager, these have been addressed. Vulnerability Details CVEID: CVE-2021-21290 DESCRIPTION: Netty could allow a local authenticated attacker to obtain sensitive information, caused by an insecure temp file in Unix-like systems. By sendin...

6.2CVSS6.5AI score0.18891EPSS
Exploits1Affected Software1
Rows per page
Query Builder