CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

56127 matches found

RedHat Linux•added 2026/04/23 4:7 p.m.•6 views

openjdk: Enhance certificate chain validation (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

5.3CVSS7.4AI score0.00066EPSS

Exploits0References5

RedHat Linux•added 2026/04/23 4:7 p.m.•18 views

openjdk: Enhance Zip file reading (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK:...

3.7CVSS7.3AI score0.00066EPSS

Exploits0References5

RedHat Linux•added 2026/04/23 4:7 p.m.•8 views

openjdk: Enhance Path Factories Redux (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

7.5CVSS7.3AI score0.00154EPSS

Exploits0References5

OSV•added 2026/04/23 10:15 a.m.•4 views

RHSA-2026:9693 Red Hat Security Advisory: java-25-openjdk security update

Bulletin has no description...

7.6CVSS7.2AI score0.00215EPSS

Exploits2References65

OSV•added 2026/04/23 10:15 a.m.•4 views

RHSA-2026:9682 Red Hat Security Advisory: java-1.8.0-openjdk security update

Bulletin has no description...

7.5CVSS7.2AI score0.00154EPSS

Exploits0References35

OSV•added 2026/04/23 10:15 a.m.•2 views

RHSA-2026:9254 Red Hat Security Advisory: Java 11 OpenJDK ELS Security Update

Bulletin has no description...

7.6CVSS6.5AI score0.00215EPSS

Exploits8References89

IBM Security Bulletins•added 2026/04/23 6:54 a.m.•2 views

Security Bulletin: Due to use of IBM SDK, IBM Sterling Connect:Direct Web Services is affected by denial of service.

Summary IBM SDK is used by IBM Sterling Connect:Direct Web Services CVE-2026-21945, CVE-2026-21932, CVE-2026-21933,CVE-2026-21925. Vulnerability Details CVEID:CVE-2026-21945 DESCRIPTION: Java SE is vulnerable to a denial of service, caused by an easily exploitable vulnerability issue that allows ...

7.5CVSS5.8AI score0.00089EPSS

Exploits0Affected Software1

AlmaLinux•added 2026/04/23 12:0 a.m.•6 views

Important: java-17-openjdk security update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: JDK: Enhance crypto algorithm support CVE-2026-22007 JDK: Improve Kerberos credentialing CVE-2026-22013 JDK: Enhance Path Factories Redux CVE-2026-22016...

7.5CVSS7.7AI score0.00154EPSS

Exploits0References10

Tenable Nessus•added 2026/04/23 12:0 a.m.•6 views

IBM Java 7.1 < 7.1.5.30 / 8.0 < 8.0.8.65 Multiple Vulnerabilities

The version of IBM Java installed on the remote host is 7.1 prior to 7.1.5.30 / 8.0 prior to 8.0.8.65. It is, therefore, affected by multiple vulnerabilities as referenced in the Oracle April 21 2026 CPU advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM...

7.5CVSS5.5AI score0.00154EPSS

Exploits0References19

Tenable Nessus•added 2026/04/23 12:0 a.m.•2 views

Oracle Linux 10 / 9 : java-25-openjdk (ELSA-2026-9693)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-9693 advisory. 1:25.0.3.0.9-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:25.0.3.0.9-1 - Update to jdk-25.0.3+9 GA - Update release notes to 25.0.3+9 -...

8.2CVSS5.7AI score0.00215EPSS

Exploits2References13

vulnersOsv•added 2026/04/23 12:0 a.m.•5 views

br.com.m4rc310:br-com-m4rc310-core-graphql (>=1.0.2 <=1.0.18), br.com.m4rc310:br-com-m4rc310-core-gtim (>=1.0.4 <=1.0.18) +119 more potentially affected by CVE-2026-40972 via org.springframework.boot:spring-boot-devtools (>=3.0.0 <=3.5.11)

org.springframework.boot:spring-boot-devtools MAVEN version =3.0.0, =1.0.2, =1.0.4, =1.0.2, =1.0.16, =1.0.2, =1.0.4, =1.0.2, =1.0.18, =1.0.2, =1.0.2, =1.0.11, =0.0.11, =3.0.0, =4.0.0, =4.0.0-M1 and more Source cves: CVE-2026-40972 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORKBOOT-16191381...

7.5CVSS5.8AI score0.00058EPSS

Exploits0

Oracle linux•added 2026/04/23 12:0 a.m.•7 views

java-25-openjdk security update

1:25.0.3.0.9-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:25.0.3.0.9-1 - Update to jdk-25.0.3+9 GA - Update release notes to 25.0.3+9 - Update FIPS patch to 57722aab802 version synced with 25.0.3+8 - Drop local libpng patches now JDK-8372534, JDK-8375063 & JDK-8377526 are included upstrea...

8.2CVSS6.6AI score0.00215EPSS

Exploits2

RedHat Linux•added 2026/04/22 5:32 p.m.•9 views

openjdk: Enhance Path Factories Redux (Oracle CPU 2026-04)

7.5CVSS7.3AI score0.00154EPSS

Exploits0References5

RedHat Linux•added 2026/04/22 5:32 p.m.•5 views

openjdk: Enhance crypto algorithm support (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0....

2.9CVSS7.4AI score0.00022EPSS

Exploits0References5

RedHat Linux•added 2026/04/22 5:32 p.m.•6 views

openjdk: Improve Kerberos credentialing (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JGSS. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

5.3CVSS7.4AI score0.00067EPSS

Exploits0References5

IBM Security Bulletins•added 2026/04/22 4:12 p.m.•2 views

Security Bulletin: IBM Guardium Data Protection is affected by an IBM SDK, Java Technology Edition Quarterly CPU - Oct 2025 - Includes Oracle October 2025 CPU vulnerability (CVE-2025-53066, CVE-2025-53057)

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2025-53066 DESCRIPTION: An unspecified vulnerability in Java SE related to the JAXP component could allow a remote attacker to cause high confidentiality impact, no integrity impact...

7.5CVSS6.6AI score0.00068EPSS

Exploits0Affected Software1

RedHat Linux•added 2026/04/22 3:44 p.m.•5 views

openjdk: Improve Kerberos credentialing (Oracle CPU 2026-04)

5.3CVSS7.4AI score0.00067EPSS

Exploits0References5

RedHat Linux•added 2026/04/22 1:51 p.m.•6 views

Important: Red Hat Security Advisory: Java 11 OpenJDK ELS Security Update

An update for java-11-openjdk with Extended Lifecycle Support is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8, and Red Hat Enterprise Linux 9. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit...

8.3CVSS7.3AI score0.00215EPSS

Exploits8References1

RedHat Linux•added 2026/04/22 1:51 p.m.•5 views

openjdk: Enhance certificate chain validation (Oracle CPU 2026-04)

5.3CVSS7.4AI score0.00066EPSS

Exploits0References5

RedHat Linux•added 2026/04/22 1:51 p.m.•4 views

openjdk: Enhance Path Factories Redux (Oracle CPU 2026-04)

7.5CVSS7.3AI score0.00154EPSS

Exploits0References5

Rows per page