CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

56258 matches found

RedHat Linux•added 2025/10/23 9:55 p.m.•2 views

io.minio/minio: minio-java Client XML Tag is Vulnerable to Value Substitution

In minio-java versions prior to 8.6.0, XML tag values containing references to system properties or environment variables were automatically substituted with their actual values during processing. This unintended behavior could lead to the exposure of sensitive information, including credentials,...

8.7CVSS5.8AI score0.00458EPSS

Exploits0References6

IBM Security Bulletins•added 2025/10/23 8:57 p.m.•3 views

Security Bulletin: IBM DataPower Gateway affected by vulnerabilities in Java runtime

Summary Java Runtime is bundled with IBM DataPower Gateway, and used by some bundled components. CVE-2025-50059, CVE-2025-30754 Vulnerability Details CVEID:CVE-2025-50059 DESCRIPTION: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle...

8.6CVSS5.9AI score0.00501EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/10/23 8:23 p.m.•4 views

Security Bulletin: multiple vulerability in IBM Spectrum Symphony with Bouncy Castle Java TLS API

Summary multiple vulerability in IBM Spectrum Symphony with Bouncy Castle Java TLS API Vulnerability Details CVEID:CVE-2024-30172 DESCRIPTION: An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature...

7.5CVSS6.7AI score0.011EPSS

Exploits0Affected Software1

RedHat Linux•added 2025/10/23 8:23 p.m.•6 views

openjdk: Enhance certificate handling (Oracle CPU 2025-10)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracl...

5.9CVSS7.2AI score0.00487EPSS

Exploits0References5

RedHat Linux•added 2025/10/23 8:23 p.m.•5 views

Moderate: Red Hat Security Advisory: OpenJDK 11.0.29 ELS Security Update for Portable Linux Builds

An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...

7.5CVSS6.7AI score0.00633EPSS

Exploits0References2

RedHat Linux•added 2025/10/23 8:23 p.m.•6 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS7.2AI score0.00633EPSS

Exploits0References5

IBM Security Bulletins•added 2025/10/23 8:16 p.m.•7 views

Security Bulletin: multiple vulerability in IBM Spectrum Symphony with IBM JRE

Summary multiple vulerability in IBM Spectrum Symphony with IBM JRE Vulnerability Details CVEID:CVE-2024-21147 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause high confidentiality, high integrity impacts. CWE:CWE-200: Exposur...

7.5CVSS6.5AI score0.01361EPSS

Exploits0Affected Software1

RedHat Linux•added 2025/10/23 8:11 p.m.•3 views

openjdk: Enhance certificate handling (Oracle CPU 2025-10)

5.9CVSS7.2AI score0.00487EPSS

Exploits0References5

RedHat Linux•added 2025/10/23 8:11 p.m.•4 views

Moderate: Red Hat Security Advisory: java-11-openjdk ELS security update

An update for java-11-openjdk with Extended Lifecycle Support is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8, and Red Hat Enterprise Linux 9. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit...

7.5CVSS6.7AI score0.00633EPSS

Exploits0References1

RedHat Linux•added 2025/10/23 8:11 p.m.•7 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

7.5CVSS7.2AI score0.00633EPSS

Exploits0References5

RedHat Linux•added 2025/10/23 8:4 p.m.•3 views

openjdk: Enhance certificate handling (Oracle CPU 2025-10)

5.9CVSS7.2AI score0.00487EPSS

Exploits0References5

RedHat Linux•added 2025/10/23 8:4 p.m.•4 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

7.5CVSS7.2AI score0.00633EPSS

Exploits0References5

RedHat Linux•added 2025/10/23 8:2 p.m.•5 views

openjdk: Enhance certificate handling (Oracle CPU 2025-10)

5.9CVSS7.2AI score0.00487EPSS

Exploits0References5

RedHat Linux•added 2025/10/23 8:2 p.m.•7 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

7.5CVSS7.2AI score0.00633EPSS

Exploits0References5

NCSC•added 2025/10/23 1:51 p.m.•7 views

Vulnerabilities fixed in Oracle Java

Oracle has fixed vulnerabilities in Oracle Java SE and Oracle GraalVM Specifically for versions 21.0.8 and 25 of Oracle Java SE, and version 21.3.15 of Oracle GraalVM Enterprise Edition. The vulnerabilities allow unauthenticated attackers with network access to compromise systems, which can lead ...

7.5CVSS6.8AI score0.01028EPSS

Exploits0References1

OSV•added 2025/10/23 10:5 a.m.•5 views

RHSA-2025:18824 Red Hat Security Advisory: java-21-openjdk security update

Bulletin has no description...

5.9CVSS7AI score0.00633EPSS

Exploits0References16

OSV•added 2025/10/23 10:5 a.m.•4 views

RHSA-2025:18821 Red Hat Security Advisory: java-17-openjdk security update

Bulletin has no description...

5.9CVSS7AI score0.00633EPSS

Exploits0References12

OSV•added 2025/10/23 10:5 a.m.•5 views

RHSA-2025:18814 Red Hat Security Advisory: java-1.8.0-openjdk security update

Bulletin has no description...

5.9CVSS7AI score0.00633EPSS

Exploits0References12

OSV•added 2025/10/23 12:0 a.m.•2 views

OPENSUSE-SU-2025:15661-1 java-17-openjdk-17.0.17.0-1.1 on GA media

These are all security issues fixed in the java-17-openjdk-17.0.17.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS6.7AI score0.00633EPSS

Exploits0References2

Tenable Nessus•added 2025/10/23 12:0 a.m.•123 views

Oracle Java SE Multiple Vulnerabilities (October 2025 CPU)

The 8u461, 11.0.28, 17.0.16, 21.0.8, 25, versions of Java installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2025 CPU advisory. - Vulnerability in Oracle Java SE component: JavaFX WebKitGTK. Supported versions that are affected are Oracle Java SE:...

8.8CVSS6.8AI score0.09524EPSS

Exploits0References17

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by