CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11989 matches found

RedHat Linux•added 2023/04/19 3:11 p.m.•7 views

OpenJDK: missing string checks for NULL characters (8296622)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to explo...

3.7CVSS7.2AI score0.01208EPSS

Exploits0References4

RedHat Linux•added 2023/04/19 2:22 p.m.•5 views

OpenJDK: certificate validation issue in TLS session negotiation (8298310)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit...

5.9CVSS7.2AI score0.01523EPSS

Exploits0References4

RedHat Linux•added 2023/04/19 2:22 p.m.•3 views

OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Difficult to exploi...

3.7CVSS7.3AI score0.01208EPSS

Exploits0References4

RedHat Linux•added 2023/04/19 2:3 p.m.•5 views

OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

3.7CVSS7.3AI score0.01208EPSS

Exploits0References4

RedHat Linux•added 2023/04/19 2:3 p.m.•7 views

OpenJDK: missing string checks for NULL characters (8296622)

3.7CVSS7.2AI score0.01208EPSS

Exploits0References4

RedHat Linux•added 2023/04/19 2:3 p.m.•7 views

OpenJDK: improper connection handling during TLS handshake (8294474)

7.4CVSS7.2AI score0.01295EPSS

Exploits0References4

RedHat Linux•added 2023/04/19 1:40 p.m.•4 views

OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

3.7CVSS7.3AI score0.01208EPSS

Exploits0References4

RedHat Linux•added 2023/04/19 1:40 p.m.•1 views

OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

3.7CVSS6.9AI score0.01036EPSS

Exploits0References4

RedHat Linux•added 2023/04/19 1:40 p.m.•2 views

OpenJDK: certificate validation issue in TLS session negotiation (8298310)

5.9CVSS7.2AI score0.01523EPSS

Exploits0References4

Qualys Blog•added 2023/04/19 11:47 a.m.•390 views

Oracle Patch Tuesday April 2023 Security Update Review

Oracle has released the second quarterly edition of Critical Patch Update, which contains a group of patches for 433 security vulnerabilities. Some of the vulnerabilities addressed this month impact various products. These patches address vulnerabilities in Oracle code and third-party components...

7.5CVSS9.5AI score0.99677EPSS

Exploits125

RedhatCVE•added 2023/04/19 9:32 a.m.•32 views

CVE-2023-21954

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit...

5.9CVSS5.7AI score0.01421EPSS

Exploits0References3

RedhatCVE•added 2023/04/19 9:31 a.m.•52 views

CVE-2023-21939

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable...

5.3CVSS5.2AI score0.02474EPSS

Exploits1References3

RedhatCVE•added 2023/04/19 9:31 a.m.•42 views

CVE-2023-21938

3.7CVSS4.8AI score0.01208EPSS

Exploits0References3

RedhatCVE•added 2023/04/19 9:31 a.m.•35 views

CVE-2023-21937

3.7CVSS4.7AI score0.01208EPSS

Exploits0References3

RedhatCVE•added 2023/04/19 9:31 a.m.•35 views

CVE-2023-21930

7.4CVSS6.9AI score0.01295EPSS

Exploits0References3

NCSC•added 2023/04/19 12:0 a.m.•6 views

Vulnerabilities fixed in Oracle Java SE

Vulnerabilities have been fixed in Oracle Java SE. The vulnerabilities allow a malicious party to perform attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Access to system data...

7.5CVSS6AI score0.02474EPSS

Exploits1

OpenVAS•added 2023/04/19 12:0 a.m.•18 views

Oracle OpenJDK Vulnerability (CVE-2023-21954)

Oracle OpenJDK is prone to a vulnerability in the hotspot/gc component. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.9CVSS7.3AI score0.01421EPSS

Exploits0References2

OpenVAS•added 2023/04/19 12:0 a.m.•25 views

Oracle Java SE Security Update (apr2023) 01 - Windows

Oracle Java SE is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS6.6AI score0.02474EPSS

Exploits1References1

OpenVAS•added 2023/04/19 12:0 a.m.•27 views

Oracle Java SE Security Update (apr2023) 01 - Linux

7.4CVSS6.6AI score0.02474EPSS

Exploits1References1

Tenable Nessus•added 2023/04/19 12:0 a.m.•30 views

RHEL 9 : java-17-openjdk (RHSA-2023:1879)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1879 advisory. The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixe...

7.4CVSS6.5AI score0.02474EPSS

Exploits1References19

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by