CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

754 matches found

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : OpenJDK 8 vulnerabilities (USN-8330-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8330-1 advisory. Thomas Beckers discovered that the JAXP component of OpenJDK 8 did not correctly...

7.5CVSS5.9AI score0.00154EPSS

Exploits0References8

Tenable Nessus•added 2 days ago•7 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : OpenJDK 11 vulnerabilities (USN-8331-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8331-1 advisory. Thomas Beckers discovered that the JAXP component of OpenJDK 11 did not correctly authenticate...

7.5CVSS7.3AI score0.00154EPSS

Exploits0References9

Tenable Nessus•added 2 days ago•5 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : OpenJDK 25 vulnerabilities (USN-8339-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8339-1 advisory. Thomas Beckers discovered that the JAXP component of OpenJDK 25 did not correctly authenticate certain APIs. A remote...

7.5CVSS7.3AI score0.00154EPSS

Exploits0References10

Tenable Nessus•added 2 days ago•5 views

Ubuntu 25.10 / 26.04 LTS : CRaC JDK 21 vulnerabilities (USN-8333-1)

The remote Ubuntu 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8333-1 advisory. Thomas Beckers discovered that the JAXP component of CRaC JDK 21 did not correctly authenticate certain APIs. A remote unauthenticated attacker...

7.5CVSS7.3AI score0.00154EPSS

Exploits0References9

Ubuntu•added 6 days ago•13 views

USN-8341-1: OpenJDK 26 vulnerabilities

Thomas Beckers discovered that the JAXP component of OpenJDK 26 did not correctly authenticate certain APIs. A remote unauthenticated attacker could possibly use this issue to gain unauthorized access to sensitive information. CVE-2026-22016 It was discovered that the Networking component of...

7.5CVSS7.2AI score0.00154EPSS

Exploits0

Ubuntu•added 6 days ago•8 views

USN-8334-1: CRaC JDK 25 vulnerabilities

Thomas Beckers discovered that the JAXP component of CRaC JDK 25 did not correctly authenticate certain APIs. A remote unauthenticated attacker could possibly use this issue to gain unauthorized access to sensitive information. CVE-2026-22016 It was discovered that the Networking component of CRa...

7.5CVSS7.3AI score0.00154EPSS

Exploits0

OSV•added 6 days ago•6 views

USN-8330-1 openjdk-8 vulnerabilities

Thomas Beckers discovered that the JAXP component of OpenJDK 8 did not correctly authenticate certain APIs. A remote unauthenticated attacker could possibly use this issue to gain unauthorized access to sensitive information. CVE-2026-22016 It was discovered that the JSSE component of OpenJDK 8 d...

7.5CVSS7.2AI score0.00154EPSS

Exploits0References8

OSV•added 6 days ago•6 views

USN-8328-1 openjdk-21 vulnerabilities

Thomas Beckers discovered that the JAXP component of OpenJDK 21 did not correctly authenticate certain APIs. A remote unauthenticated attacker could possibly use this issue to gain unauthorized access to sensitive information. CVE-2026-22016 It was discovered that the Networking component of...

7.5CVSS7.2AI score0.00154EPSS

Exploits0References9

Ubuntu•added 6 days ago•14 views

USN-8328-1: OpenJDK 21 vulnerabilities

7.5CVSS7.2AI score0.00154EPSS

Exploits0

Ubuntu•added 6 days ago•13 views

USN-8327-1: OpenJDK 17 vulnerabilities

Thomas Beckers discovered that the JAXP component of OpenJDK 17 did not correctly authenticate certain APIs. A remote unauthenticated attacker could possibly use this issue to gain unauthorized access to sensitive information. CVE-2026-22016 It was discovered that the Networking component of...

7.5CVSS7.2AI score0.00154EPSS

Exploits0

Redos•added 2026/05/24 12:0 a.m.•12 views

ROS-20260524-73-0004

A vulnerability in the JSSE component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with a breach of the data protection mechanism. Exploitation of the vulnerability could allow an attacker acting remotely to...

5.3CVSS7.2AI score0.00066EPSS

Exploits0

Redos•added 2026/05/24 12:0 a.m.•11 views

ROS-20260524-73-0001

5.3CVSS7.2AI score0.00066EPSS

Exploits0

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в openjdk-11

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. The supported versions affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. This easily exploitable vulnerability allows an unauthenticated...

5.3CVSS6.8AI score0.00153EPSS

Exploits0References1

OSV•added 2026/05/08 5:43 a.m.•4 views

BIT-JRE-2021-35550

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows unauthenticated...

7.1CVSS6.8AI score0.00091EPSS

Exploits0References13

Positive Technologies•added 2026/05/08 12:0 a.m.•10 views

PT-2026-38717

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability...

5.8CVSS5.8AI score0.00328EPSS

Exploits0References7

Positive Technologies•added 2026/05/08 12:0 a.m.•4 views

PT-2026-38740

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacker...

5.3CVSS5.8AI score0.00144EPSS

Exploits0References12

Positive Technologies•added 2026/05/08 12:0 a.m.•7 views

PT-2026-38848

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE:8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK:17.0.14, 21.0.6, 24; Oracle...

7.4CVSS5.8AI score0.00247EPSS

Exploits0References5

Positive Technologies•added 2026/05/08 12:0 a.m.•6 views

PT-2026-38724

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.6 and 14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability c...

7.5CVSS5.8AI score0.00535EPSS

Exploits0References7

Positive Technologies•added 2026/05/08 12:0 a.m.•7 views

PT-2026-38711

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this...

5.8CVSS5.8AI score0.02147EPSS

Exploits0References11

OSV•added 2026/05/06 2:45 p.m.•1 views

BIT-JAVA-2025-21587

7.4CVSS6.8AI score0.00247EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by