Lucene search
K

183 matches found

RedHat Linux
RedHat Linux
added 2022/12/07 10:47 a.m.4 views

OpenJDK: insufficient randomization of JNDI DNS port numbers (JNDI, 8286910)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JNDI. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit...

3.7CVSS7.2AI score0.01401EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/10/20 10:18 a.m.4 views

OpenJDK: HttpServer no connection count limit (Lightweight HTTP Server, 8286918)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Lightweight HTTP Server. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0...

5.3CVSS7.3AI score0.02038EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/10/18 12:0 a.m.3 views

Oracle Java SE 安全漏洞

Oracle Java SE is a U.S. Oracle Oracle for the development and deployment of desktop, server, and embedded devices and real-time environments in the Java application. A security vulnerability exists in Oracle Java SE versions 8u341, 8u345 perf, 11.0.16.1, 17.0.4.1, 19, Oracle GraalVM Enterprise...

3.7CVSS6.4AI score0.02376EPSS
Exploits0References41
OSV
OSV
added 2022/04/26 12:0 a.m.7 views

UBUNTU-CVE-2022-21496

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JNDI. Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable...

5.3CVSS6.4AI score0.02651EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/04/20 3:35 p.m.2 views

OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable...

5.3CVSS7.2AI score0.02401EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/27 2:8 p.m.3 views

OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS7.4AI score0.03458EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/24 1:3 p.m.2 views

OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS7.4AI score0.03486EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/24 9:49 a.m.9 views

OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS7.4AI score0.08346EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/24 9:46 a.m.4 views

OpenJDK: Excessive memory allocation in TIFF*Decompressor (ImageIO, 8274096)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS7.4AI score0.03216EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/24 9:45 a.m.3 views

OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS7.4AI score0.03782EPSS
Exploits0References4
OSV
OSV
added 2022/01/19 12:15 p.m.1 views

DEBIAN-CVE-2022-21293

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS5.6AI score0.08346EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/01/19 10:5 a.m.4 views

OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS7.4AI score0.07748EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/01/18 12:0 a.m.6 views

PT-2022-6856

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 11.0.13, 17.0.1 Oracle GraalVM Enterprise Edition versions 20.3.4, 21.3.0 Description The vulnerability in the ImageIO component of Oracle Java SE and Oracle GraalVM Enterprise Edition is related to unlimited resource...

5.3CVSS6.8AI score0.03216EPSS
Exploits0References184
CNNVD
CNNVD
added 2021/10/19 12:0 a.m.2 views

Oracle Java SE 输入验证错误漏洞

Java SE stands for Java Platform Standard Edition and is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments.Oracle GraalVM Enterprise Edition is an Oracle-based multilingual virtual machine for enterprise Java SE. A denial of servic...

3.1CVSS5.6AI score0.03599EPSS
Exploits0References35
CNNVD
CNNVD
added 2021/10/19 12:0 a.m.2 views

Oracle Java SE 输入验证错误漏洞

Java SE stands for Java Platform Standard Edition and is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments.Oracle GraalVM Enterprise Edition is an Oracle-based multilingual virtual machine for enterprise Java SE. An unspecified...

5.3CVSS5.7AI score0.05241EPSS
Exploits0References64
CNNVD
CNNVD
added 2021/10/19 12:0 a.m.4 views

Oracle Java SE 输入验证错误漏洞

Java SE stands for Java Platform Standard Edition and is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments.Oracle GraalVM Enterprise Edition is an Oracle-based multilingual virtual machine for enterprise Java SE. A denial of servic...

5.3CVSS5.6AI score0.06886EPSS
Exploits0References54
OSV
OSV
added 2020/10/21 3:15 p.m.3 views

DEBIAN-CVE-2020-14803

Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of th...

5.3CVSS6AI score0.03122EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/08/12 12:0 a.m.7 views

The vulnerability of the Libraries component in Oracle Java SE and Oracle Java SE Embedded software platforms allows a attacker to cause a service failure.

The vulnerability of the Libraries component in Oracle Java SE and Oracle Java SE Embedded software platforms is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

4.3CVSS6.3AI score0.04044EPSS
Exploits0References7Affected Software6
OSV
OSV
added 2020/07/14 12:0 a.m.2 views

UBUNTU-CVE-2020-14578

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols ...

3.7CVSS6.5AI score0.04044EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.4 views

The vulnerability of the Security component in Oracle Java SE and Oracle Java SE Embedded software platforms allows attackers to trigger a service failure.

The vulnerability of the Security component in Oracle Java SE and Oracle Java SE Embedded software platforms is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service failures...

4.3CVSS6.4AI score0.03625EPSS
Exploits0References7Affected Software7
Rows per page
Query Builder