Lucene search
+L

82 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/12/10 4:40 p.m.18 views

Security Bulletin: There are multiple vulnerabilities in IBM App Connect Enterprise due to IBM Semeru Runtime

Summary There are multiple vulnerabilities in IBM App Connect Enterprise due to IBM Semeru Runtime. Vulnerability Details CVEID:CVE-2024-21217 DESCRIPTION: An unspecified vulnerability in Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition related to the Serialization...

5.3CVSS8AI score0.05966EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2024/10/23 12:0 a.m.11 views

Unspecified Vulnerability in Oracle Java SE (CNVD-2024-44548)

Oracle Java SE is a U.S. Oracle Oracle company for the development and deployment of desktop, server and embedded devices and real-time environments in the Java application. A security vulnerability exists in Oracle Java SE for Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise...

3.7CVSS6.1AI score0.00651EPSS
Exploits0References1
Amazon
Amazon
added 2024/07/22 12:0 a.m.14 views

Important: java-17-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.1...

7.4CVSS7AI score0.01257EPSS
Exploits0
Amazon
Amazon
added 2024/07/22 12:0 a.m.16 views

Important: java-1.8.0-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.1...

7.4CVSS7AI score0.01257EPSS
Exploits0
CNVD
CNVD
added 2024/04/18 12:0 a.m.12 views

Unspecified Vulnerability in Oracle Java SE (CNVD-2024-48676)

Oracle Java SE is a for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in Oracle Java SE for Oracle Java SE and Oracle GraalVM Enterprise Edition. An attacker could exploit the vulnerability to gai...

2.5CVSS3.5AI score0.00354EPSS
Exploits0References1
OSV
OSV
added 2024/04/16 10:15 p.m.10 views

CVE-2024-21012

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.10, 21.0.2, 22; Oracle GraalVM...

3.7CVSS3.1AI score
Exploits0References3
OSV
OSV
added 2024/02/17 2:15 a.m.10 views

CVE-2024-20921

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.0.1; Oracle GraalVM...

5.9CVSS5.9AI score
Exploits0References3
Amazon
Amazon
added 2024/01/18 12:0 a.m.8 views

Important: java-17-amazon-corretto

Issue Overview: A vulnerability that allows an attacker to execute arbitrary java code from the javascript engine even though the option "--no-java" was set. CVE-2024-20918 With carefully crafted custom bytecodes, arbitrary unverified bytecodes could be executed. CVE-2024-20919 Loop optimizations...

7.5CVSS8.3AI score0.00918EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.6 views

PT-2024-1227

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1 Oracle GraalVM for JDK versions 17.0.9, 21.0.1 Oracle GraalVM Enterprise Edition versions 20.3.12, 21.3.8, 22.3.4 Description The issue exists due to insufficient input...

5.9CVSS6.7AI score0.00792EPSS
Exploits0References366
OSV
OSV
added 2023/10/17 10:15 p.m.10 views

CVE-2023-22025

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition, product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u381-perf, 17.0.8, 21; Oracle GraalVM for JDK: 17.0.8, 21; Oracle GraalVM Enterprise Edition:...

3.7CVSS3.7AI score
Exploits0References3
Amazon
Amazon
added 2023/07/19 12:0 a.m.7 views

Medium: java-1.8.0-amazon-corretto

Issue Overview: 2023-07-20: The severity level was changed from low to medium. Vulnerability in Oracle Java SE component: JavaFX. The supported version that is affected is Oracle Java SE: 8u371. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.9CVSS5.2AI score0.01316EPSS
Exploits0
Amazon
Amazon
added 2023/05/03 12:0 a.m.10 views

Important: java-11-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficul...

7.4CVSS6.4AI score0.02474EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2022/07/04 12:0 a.m.6 views

PT-2022-4254

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1 Oracle GraalVM Enterprise Edition versions 20.3.6, 21.3.2, 22.1.0 Description The issue is related to insufficient input validation in the Hotspot component of Oracle Java SE...

5.9CVSS6.9AI score0.03693EPSS
Exploits0References314
OSV
OSV
added 2020/07/15 6:15 p.m.9 views

CVE-2020-14581

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocol...

3.7CVSS5.9AI score
Exploits0References15
OSV
OSV
added 2019/10/16 6:15 p.m.7 views

CVE-2019-2894

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

3.7CVSS4.7AI score
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2018/11/02 12:0 a.m.49 views

F5 Networks BIG-IP : Oracle Java SE vulnerability (K44923228)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with...

7.4CVSS6.1AI score0.03966EPSS
Exploits0References2
Prion
Prion
added 2018/01/18 2:29 a.m.21 views

Design/Logic Flaw

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker...

5.8CVSS4.7AI score0.04162EPSS
Exploits0References22Affected Software16
Prion
Prion
added 2018/01/18 2:29 a.m.22 views

Design/Logic Flaw

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacke...

4.3CVSS4.1AI score0.04675EPSS
Exploits0References22Affected Software16
Vulnrichment
Vulnrichment
added 2018/01/18 2:0 a.m.14 views

CVE-2018-2634

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: JGSS. Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

6.7AI score0.04532EPSS
Exploits0References21
UbuntuCve
UbuntuCve
added 2017/07/20 12:0 a.m.52 views

CVE-2017-10116

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Difficult to exploit vulnerability allows unauthenticated attacker with...

8.3CVSS6.8AI score0.03524EPSS
Exploits0References5
Rows per page
Query Builder