11989 matches found
Important: java-1.8.0-openjdk
Issue Overview: Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM eDiscovery Analyzer
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Java™ Version 8 that is used by IBM eDiscovery Analyzer. These issues were disclosed as part of the IBM Java SDK updates in Jul 2020. Vulnerability Details CVEID: CVE-2020-14583 DESCRIPTION: An unspecified...
Security Bulletin: Vulnerability in IBM Java Runtime affects IBM Cloud Transformation Advisor
Summary There is a vulnerability found in IBM® Runtime Environment Java™ Version 8.0.6.10 used by IBM Cloud Transformation Advisor. IBM Cloud Transformation Advisor has addressed the applicable CVE. The issue was disclosed as part of the IBM Java SDK updates in August 2020. Vulnerability Details...
Security Bulletin: Java Technology Edition Quarterly CPU - October 2014 for Rational Software Architect for WebSphere Software (CVE-2014-3566)
Summary IBM SDK, which is based on an Oracle Java Development Kit JDK, is shipped with Rational Software Architect, Rational Software Architect for Websphere Software and Rational Software Architect for RealTime Edition. Oracle has released the October 2014 critical patch updates CPU that contain...
Security Bulletin: Multiple Security Vulnerabilities Impact IBM Predictive Insights
Summary Multiple security vulnerabilities impact IBM Predictive Insights Vulnerability Details CVEID: CVE-2017-5644 DESCRIPTION: Apache POI is vulnerable to a denial of service, cause by an XML External Entity Injection XXE error when processing XML data. By using a specially crafted OOXML file, ...
NewStart CGSL MAIN 4.05 : java-1.7.0-openjdk Multiple Vulnerabilities (NS-SA-2020-0048)
The remote NewStart CGSL host, running version MAIN 4.05, has java-1.7.0-openjdk packages installed that are affected by multiple vulnerabilities: - Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE:...
Huawei EulerOS: Security Advisory for java-1.8.0-openjdk (EulerOS-SA-2020-1858)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Jan 2020 - CVE-2020-2601 affects IBM Tivoli Composite Application Manager for Transactions-Robotic Response Time
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 ,version 8, that is used by IBM Tivoli Composite Application Manager for Transactions - Robotic Response Time. CVE-2020-2601 was disclosed as part of the IBM Java SDK updates in January 2020. Vulnerability...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affects IBM Operations Analytics Predictive Insights
Summary There are multiple vulnerabilities in IBM® SDK, Java Technology Edition Quarterly CPU, Apr 2020, which Includes Oracle Apr 2020 CPU minus CVE-2020-2773. Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Lightweight HTTP Server. Vulnerability in the Java S...
The vulnerability of the Java SE product’s software platform component, Oracle Java SE, is related to insufficient validation of input data. This allows a malicious actor to gain unauthorized access to read, modify, add, or delete data.
The vulnerability of the Hotspot component in Oracle Java SE software lies in insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to read, modify, add, or delete data using the HTTP protocol...
The vulnerability of the Libraries component in Oracle Java SE and Java SE Embedded software platforms lies in insufficient validation of input data. This allows attackers to gain unauthorized access to protected information, or to perform actions such as reading, modifying, adding, or deleting data.
The vulnerability of the Libraries component in Oracle Java SE and Java SE Embedded software platforms is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, or to read, modify, add, or delete...
The vulnerability of the 2D software platforms Oracle Java SE and Oracle Java SE Embedded allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the 2D software platforms Oracle Java SE and Oracle Java SE Embedded relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the Libraries component of Oracle Java SE and Oracle Java SE Embedded software platforms allows attackers to compromise the integrity, confidentiality, and accessibility of protected information.
The vulnerability of the Libraries component in Oracle Java SE and Oracle Java SE Embedded software platforms is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to compromise the integrity, confidentiality, and accessibility of protected...
The vulnerability in the 2D software platform components of Oracle Java SE and Java SE Embedded allows a perpetrator to gain access to modify, add, or delete data.
The vulnerability of the 2D software platform components of Oracle Java SE and Java SE Embeddeds is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to the ability to modify, add, or delete data...
The vulnerability of the JAXP component in Oracle Java SE and Java SE Embedded software allows a attacker to gain access to read, modify, add, or delete data.
The vulnerability of the JAXP component in Oracle Java SE and Java SE Embedded software platforms is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to read, modify, add, or delete data using various network...
The vulnerability of the Libraries component in Oracle Java SE and Oracle Java SE Embedded software platforms allows a hacker to trigger a service failure.
The vulnerability of the Libraries component in Oracle Java SE and Oracle Java SE Embedded software platforms is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the JSE component in Oracle Java SE and Oracle Java SE Embedded software platforms allows attackers to gain unauthorized access to protected information.
The vulnerability of the JSE component in Oracle Java SE and Oracle Java SE Embedded software platforms is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the Libraries component in Oracle Java SE and Oracle Java SE Embedded software platforms allows a attacker to cause a service failure.
The vulnerability of the Libraries component in Oracle Java SE and Oracle Java SE Embedded software platforms is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affects WebSphere Application Server July 2020 CPU that is bundled with IBM WebSphere Application Server Patterns
Summary There are multiple vulnerabilities in the IBM SDK Java Technology Edition that is shipped with IBM WebSphere Application Server. These issues were disclosed in the IBM Java SDK updates in July 2020. Vulnerability Details CVEID: CVE-2020-2601 DESCRIPTION: An unspecified vulnerability in...
Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect WebSphere Application Server July 2020 CPU plus deferred CVE-2020-2590 and CVE-2020-2601
Summary There are multiple vulnerabilities in the IBM® SDK, Java™ Technology Edition that is shipped with IBM WebSphere Application Server. These might affect some configurations of IBM WebSphere Application Server Traditional, IBM WebSphere Application Server Liberty and IBM WebSphere Applicatio...