CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/08 5:44 a.m.•10 views

BIT-JRE-2022-21282

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS6.5AI score0.02877EPSS

Positive Technologies•added 2026/05/08 12:0 a.m.•13 views

PT-2026-38703

Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of th...

5.3CVSS5.9AI score0.03122EPSS

Exploits0References9

Positive Technologies•added 2026/05/08 12:0 a.m.•15 views

PT-2026-38697

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JNDI. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS6.1AI score0.02296EPSS

Positive Technologies•added 2026/05/08 12:0 a.m.•12 views

PT-2026-38791

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6,...

3.7CVSS5.8AI score0.01164EPSS

OSV•added 2026/05/06 2:43 p.m.•4 views

BIT-JAVA-2023-22045

3.7CVSS6.5AI score0.01164EPSS

OSV•added 2026/05/06 2:43 p.m.•4 views

BIT-JAVA-2023-22044

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371-perf, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 21.3.6, 22.3.2; Oracle GraalVM for...

3.7CVSS6.2AI score0.01127EPSS

Exploits0References5

OSV•added 2026/05/06 2:42 p.m.•5 views

BIT-JAVA-MIN-2020-2778

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability...

4.3CVSS6.7AI score0.02298EPSS

Exploits0References6

OSV•added 2026/05/06 2:41 p.m.•5 views

BIT-JAVA-MIN-2020-14781

4.3CVSS5.8AI score0.02296EPSS

Positive Technologies•added 2026/05/06 12:0 a.m.•5 views

PT-2026-37726

5.3CVSS5.8AI score0.02877EPSS

Positive Technologies•added 2026/05/06 12:0 a.m.•6 views

PT-2026-37744

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edition: 20.3.6, 21.3.2 and 22.1.0. Easily exploitab...

5.3CVSS6.1AI score0.02902EPSS

Exploits0References13

Positive Technologies•added 2026/05/06 12:0 a.m.•12 views

PT-2026-37977

3.7CVSS6.5AI score0.01164EPSS

Positive Technologies•added 2026/05/06 12:0 a.m.•8 views

PT-2026-37877

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocol...

4.3CVSS6.7AI score0.03284EPSS

Exploits0References17

Positive Technologies•added 2026/05/06 12:0 a.m.•6 views

PT-2026-37670

4.3CVSS5.8AI score0.03284EPSS

Exploits0References17

Positive Technologies•added 2026/05/06 12:0 a.m.•12 views

PT-2026-37905

4.3CVSS6.7AI score0.02298EPSS

OSV•added 2026/05/04 12:34 p.m.•4 views

SUSE-SU-2026:21543-1 Security update for java-25-openjdk

This update for java-25-openjdk fixes the following issues: Update to upstream tag jdk-25.0.3+9 April 2026 CPU. Security issues fixed: - CVE-2026-22007: Security: unauthenticated attacker with logon to the infrastructure where java executes can gain unauthorized read access to a subset of...

7.5CVSS5.9AI score0.00358EPSS

Exploits0References19

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability in openjdk-11

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. The supported versions affected by this vulnerability are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. The vulnerability is difficult t...

4.3CVSS6.7AI score0.04238EPSS

Tenable Nessus•added 2026/03/16 12:0 a.m.•4 views

EulerOS 2.0 SP12 : rsync (EulerOS-SA-2026-1410)

According to the versions of the rsync package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array...

4.3CVSS5.9AI score0.00283EPSS

Exploits0References2

OSV•added 2026/01/20 10:16 p.m.•3 views

CVE-2026-21974

Vulnerability in the Oracle Life Sciences Central Designer product of Oracle Health Sciences Applications component: Platform. The supported version that is affected is 7.0.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Life...

5.3CVSS5.8AI score0.00219EPSS

NVD•added 2026/01/20 10:15 p.m.•6 views

CVE-2026-21928

Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP to compromise Oracle Solaris. Successful attacks of this vulnerability can...

5.3CVSS0.0028EPSS