CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

22 matches found

SUSE CVE•added 2023/02/15 5:23 a.m.•3 views

SUSE CVE-2015-0458

Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...

7.6CVSS8.6AI score0.07978EPSS

Exploits0References18

RedHat Linux•added 2018/03/14 3:23 p.m.•0 views

OpenJDK: unbounded memory allocation in BasicAttributes deserialization (JNDI, 8191142)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacker wit...

4.3CVSS7.3AI score0.0009EPSS

Exploits0References4

RedHat Linux•added 2016/07/18 1:51 p.m.•3 views

OpenJDK: incomplete MaxXMLNameLimit enforcement (JAXP, 8086733)

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803 and CVE-2015-4911...

5CVSS7.3AI score0.058EPSS

Exploits0References5

RedHat Linux•added 2015/07/30 5:14 p.m.•2 views

OpenJDK: RemoteObjectInvocationHandler allows calling finalize() (RMI, 8076409)

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI...

10CVSS6.8AI score0.09686EPSS

Exploits0References5

RedHat Linux•added 2014/10/15 3:3 a.m.•3 views

OpenJDK: incorrect optimization of range checks in C2 compiler (Hotspot, 8022783)

Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, and 7u67, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Hotspot...

5CVSS6.7AI score0.02321EPSS

Exploits0References5

RedHat Linux•added 2014/08/11 4:54 p.m.•3 views

OpenJDK: Prevent instantiation of service with non-public constructor (Security, 8035004)

Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Security...

5CVSS7.4AI score0.01993EPSS

Exploits0References5

RedHat Linux•added 2014/07/16 8:49 a.m.•4 views

OpenJDK: Prevent instantiation of service with non-public constructor (Security, 8035004)

Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Security...

5CVSS7.4AI score0.01993EPSS

Exploits0References5

RedHat Linux•added 2014/07/16 5:18 a.m.•2 views

OpenJDK: Prevent instantiation of service with non-public constructor (Security, 8035004)

Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Security...

5CVSS7.4AI score0.01993EPSS

Exploits0References5

RedHat Linux•added 2014/06/10 12:34 p.m.•2 views

OpenJDK: ServiceLoader Exception handling security bypass (Libraries, 8031394)

Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries...

10CVSS7AI score0.11906EPSS

Exploits0References5

RedHat Linux•added 2014/06/10 12:34 p.m.•3 views

OpenJDK: AWT incorrect FlavorMap seperation (AWT, 8026797)

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-2412...

7.5CVSS7.1AI score0.03851EPSS

Exploits0References5

RedHat Linux•added 2014/06/10 12:34 p.m.•2 views

OpenJDK: incorrect caching of data initialized via TCCL (JAXWS, 8026188)

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-0458...

7.5CVSS7.1AI score0.03851EPSS

Exploits0References5

RedHat Linux•added 2014/05/15 5:28 p.m.•3 views

OpenJDK: RSA unpadding timing issues (Security, 8027766)

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security...

4CVSS6.8AI score0.02007EPSS

Exploits0References5

RedHat Linux•added 2014/04/17 9:28 a.m.•3 views

OpenJDK: missing randomization of JNDI DNS client query IDs (JNDI, 8030731)

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via vectors related to JNDI...

5.8CVSS6.8AI score0.02145EPSS

Exploits0References5

RedHat Linux•added 2014/04/17 9:28 a.m.•2 views

OpenJDK: remove insecure Java Sound provider caching (Sound, 8026163)

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound...

7.5CVSS6.8AI score0.03851EPSS

Exploits0References5

RedHat Linux•added 2014/01/27 7:54 p.m.•2 views

OpenJDK: XXE issue in decoder (Beans, 8023245)

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote authenticated users to affect confidentiality and availability via unknown vectors related to Beans. NOTE: the previous information is from the Janua...

5.5CVSS6.4AI score0.00352EPSS

Exploits0References5

RedHat Linux•added 2014/01/15 12:59 a.m.•3 views

OpenJDK: insufficient Socket checkListen checks (Networking, 8011786)

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45, and Java SE Embedded 7u45, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims...

5CVSS6.4AI score0.0228EPSS

Exploits0References5

RedHat Linux•added 2013/11/07 4:47 p.m.•2 views

OpenJDK: javac does not ignore certain ignorable characters (Javadoc, 8016653)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, and JRockit R27.7.6 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Javadoc...

6.4CVSS6.8AI score0.01835EPSS

Exploits0References5

RedHat Linux•added 2013/11/07 4:45 p.m.•3 views

OpenJDK: XML parsing Denial of Service (JAXP, 8014530)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JAXP...

5CVSS6.8AI score0.05761EPSS

Exploits0References5

RedHat Linux•added 2013/11/05 5:58 p.m.•2 views

OpenJDK: checkPackageAccess missing security check (Libraries, 8017291)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via...

10CVSS6.8AI score0.06355EPSS

Exploits0References5

RedHat Linux•added 2012/10/17 4:4 p.m.•2 views

OpenJDK: SecureRandom mulitple seeders information disclosure (Security, 7167656)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.238 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Security...

2.6CVSS7.4AI score0.01972EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by