Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

56247 matches found

Oracle linux
Oracle linuxadded 2026/01/23 12:0 a.m.10 views

java-21-openjdk security update

1:21.0.10.0.7-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.10.0.7-1 - Update to jdk-21.0.10+7 GA - Update release notes to 21.0.10+7 - Bump libpng version to 1.6.51 following JDK-8372534 - Update FIPS patch to include nss.fips.cfg that grants CKAENCRYPT - Handle 'upgrade' as an...

7.5CVSS5.8AI score0.00547EPSS
Exploits6
Tenable Nessus
Tenable Nessusadded 2026/01/23 12:0 a.m.7 views

Oracle Linux 10 / 8 / 9 : java-21-openjdk (ELSA-2026-0928)

The remote Oracle Linux 10 / 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0928 advisory. 1:21.0.10.0.7-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.10.0.7-1 - Update to jdk-21.0.10+7 GA - Update release notes to...

7.5CVSS6AI score0.00547EPSS
Exploits6References6
Tenable Nessus
Tenable Nessusadded 2026/01/23 12:0 a.m.4 views

IBM Java 7.1 < 7.1.5.29 / 8.0 < 8.0.8.60 Multiple Vulnerabilities

The version of IBM Java installed on the remote host is 7.1 prior to 7.1.5.29 / 8.0 prior to 8.0.8.60. It is, therefore, affected by multiple vulnerabilities as referenced in the Oracle January 20 2026 CPU advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM...

7.5CVSS6.1AI score0.00547EPSS
Exploits1References13
Tenable Nessus
Tenable Nessusadded 2026/01/23 12:0 a.m.10 views

RockyLinux 8 : java-21-openjdk (RLSA-2026:0928)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:0928 advisory. JDK: Improve JMX connections CVE-2026-21925 JDK: Improve HttpServer Request handling CVE-2026-21933 JDK: Enhance Certificate Checking CVE-2026-21945...

7.5CVSS6AI score0.00547EPSS
Exploits6References11
IBM Security Bulletins
IBM Security Bulletinsadded 2026/01/22 8:57 p.m.9 views

Security Bulletin: IBM Sterling Connect:Direct for Unix is vulnerable due to IBM Runtime Environment Java Technology Edition Version 8

Summary IBM Java 8 is used by IBM Sterling Connect:Direct for UNIX in product configuration and data transmission. IBM Sterling Connect:Direct for UNIX is impacted by vulnerabilities in IBM Java 8. IBM Sterling Connect:Direct for UNIX has upgraded IBM Java 8 to address the issues. Vulnerability...

7.5CVSS5.7AI score0.00633EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2026/01/22 8:47 p.m.5 views

Security Bulletin: IBM Sterling Connect:Direct for Unix is impacted by vulnerabilities due to IBM Java 17

Summary IBM Java 17 is used by IBM Sterling Connect:Direct for UNIX in product configuration and data transmission. IBM Sterling Connect:Direct for UNIX is impacted by vulnerabilities in IBM Java 17. IBM Sterling Connect:Direct for UNIX has upgraded IBM Java 17 to address the issues. Vulnerabilit...

7.5CVSS5.7AI score0.00633EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linuxadded 2026/01/22 7:2 p.m.3 views

openjdk: Improve HttpServer Request handling (Oracle CPU 2026-01)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK: 17.0.17...

6.1CVSS5.8AI score0.00261EPSS
Exploits1References5
RedHat Linux
RedHat Linuxadded 2026/01/22 7:2 p.m.3 views

openjdk: Enhance Certificate Checking (Oracle CPU 2026-01)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK: 17.0.17 an...

7.5CVSS5.9AI score0.00547EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/01/22 7:2 p.m.4 views

openjdk: Improve JMX connections (Oracle CPU 2026-01)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: RMI. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK: 17.0.17 and...

4.8CVSS5.8AI score0.00212EPSS
Exploits0References5
Metasploit
Metasploitadded 2026/01/22 6:57 p.m.357 views

Burp Extension Persistence

This module adds a java based malicious extension to the Burp Suite configuration file. When burp is opened, the extension will be loaded and the payload will be executed. Tested against Burp Suite Community Edition v2024.9.4, on Ubuntu Desktop 24.04. Tested against Burp Suite Community Edition...

5.9AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletinsadded 2026/01/22 4:52 p.m.9 views

Security Bulletin: IBM Sterling Connect:Direct for Microsoft Windows is vulnerable to multiple issues due to IBM Runtime Environment Java Technology Edition Version 8

Summary There are vulnerabilities in IBM Runtime Environment Java Technology Edition Version 8 used by IBM Sterling Connect:Direct for Microsoft Windows. IBM Sterling Connect:Direct for Microsoft Windows has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2025-53066 DESCRIPTION: An...

7.5CVSS5.6AI score0.00633EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2026/01/22 4:49 p.m.9 views

Security Bulletin: IBM Sterling Connect:Direct for Microsoft Windows is vulnerable to issues in IBM Semeru Runtime version 17

Summary There are vulnerabilities in IBM Semeru Runtime version 17 used by IBM Sterling Connect:Direct for Microsoft Windows. IBM Sterling Connect:Direct for Microsoft Windows has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2025-53057 DESCRIPTION: An unspecified vulnerability i...

7.5CVSS5.6AI score0.00633EPSS
Exploits0Affected Software1
Chainguard
Chainguardadded 2026/01/22 1:17 p.m.6 views

CVE-2026-21933 vulnerabilities

Vulnerabilities for packages: adoptium-openjdk, liberica, openjdk-17-openj9, cof-corretto, zulu-psu, openjdk, openjdk-25-openj9, openjdk-11-openj9, openjdk-21-openj9, zulu-cpu, openjdk-26-openj9, openjdk-8-openj9, corretto, openjdk-crac...

6.1CVSS6.4AI score0.00261EPSS
Exploits1
OSV
OSVadded 2026/01/22 12:31 p.m.5 views

GHSA-QQPG-MVQG-649V Logback allows an attacker to instantiate classes already present on the class path

ACE vulnerability in configuration file processing by QOS.CH logback-core up to and including version 1.5.24 in Java applications, allows an attacker to instantiate classes already present on the class path by compromising an existing logback configuration file. The instantiation of a potentially...

1.8CVSS5.8AI score0.00159EPSS
Exploits0References5
OSV
OSVadded 2026/01/22 10:18 a.m.10 views

RHSA-2026:0927 Red Hat Security Advisory: java-17-openjdk security update

Bulletin has no description...

7.5CVSS5AI score0.00547EPSS
Exploits6References33
OSV
OSVadded 2026/01/22 10:18 a.m.12 views

RHSA-2026:0847 Red Hat Security Advisory: java-11-openjdk ELS security update

Bulletin has no description...

7.5CVSS5AI score0.00547EPSS
Exploits6References33
NVD
NVDadded 2026/01/22 10:16 a.m.7 views

CVE-2026-1225

ACE vulnerability in configuration file processing by QOS.CH logback-core up to and including version 1.5.24 in Java applications, allows an attacker to instantiate classes already present on the class path by compromising an existing logback configuration file. The instantiation of a potentially...

1.8CVSS0.00159EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2026/01/22 10:16 a.m.5 views

CVE-2026-1225

ACE vulnerability in configuration file processing by QOS.CH logback-core up to and including version 1.5.24 in Java applications, allows an attacker to instantiate classes already present on the class path by compromising an existing logback configuration file. The instantiation of a potentially...

1.8CVSS5.9AI score0.00159EPSS
Exploits0References2
OSV
OSVadded 2026/01/22 10:16 a.m.3 views

UBUNTU-CVE-2026-1225

ACE vulnerability in configuration file processing by QOS.CH logback-core up to and including version 1.5.24 in Java applications, allows an attacker to instantiate classes already present on the class path by compromising an existing logback configuration file. The instantiation of a potentially...

1.8CVSS5.8AI score0.00159EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2026/01/22 9:24 a.m.3 views

openjdk: Enhance Certificate Checking (Oracle CPU 2026-01)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK: 17.0.17 an...

7.5CVSS5.9AI score0.00547EPSS
Exploits0References5
Rows per page
Query Builder