CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/03/04 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2018-3214

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Sound. Supported versions that are affected are Java SE: 6u201...

5.3CVSS6.1AI score0.07EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2017-10285

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: RMI. Supported versions that are affected are Java SE: 6u161, 7u151,...

9.6CVSS6.9AI score0.03143EPSS

Exploits0References3

RedHat Linux•added 2025/02/06 4:42 p.m.•4 views

openjdk: Enhance array handling (Oracle CPU 2025-01)

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to Oracle Java SE accessible. This vulnerability can be...

4.8CVSS7.4AI score0.00971EPSS

OSV•added 2024/10/15 8:15 p.m.•2 views

DEBIAN-CVE-2024-21208

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23;...

3.7CVSS5.9AI score0.01018EPSS

Exploits0References1

OSV•added 2024/04/16 10:15 p.m.•5 views

CVE-2024-21003

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u401; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult to exploit vulnerability allows unauthenticated...

3.1CVSS5.8AI score0.00863EPSS

OSV•added 2024/02/17 2:15 a.m.•5 views

CVE-2024-20923

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows unauthenticated...

3.1CVSS7.2AI score0.00601EPSS

RedHat Linux•added 2024/01/17 4:56 p.m.•2 views

OpenJDK: logging of digital signature private keys (8316976)

Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition executes to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks o...

4.7CVSS7.3AI score0.00411EPSS

RedHat Linux•added 2024/01/17 4:6 p.m.•4 views

OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547)

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or...

7.4CVSS7.3AI score0.00911EPSS

RedHat Linux•added 2024/01/17 2:15 p.m.•8 views

OpenJDK: logging of digital signature private keys (8316976)

4.7CVSS7.3AI score0.00411EPSS

RedHat Linux•added 2024/01/17 9:2 a.m.•3 views

OpenJDK: logging of digital signature private keys (8316976)

4.7CVSS7.3AI score0.00411EPSS

RedHat Linux•added 2023/07/31 9:33 a.m.•2 views

OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Difficult to exploi...

3.7CVSS7.3AI score0.01208EPSS

RedHat Linux•added 2023/07/20 1:6 p.m.•3 views

OpenJDK: weakness in AES implementation (8308682)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2;...

RedHat Linux•added 2023/07/20 12:24 p.m.•3 views

OpenJDK: weakness in AES implementation (8308682)

RedHat Linux•added 2023/07/19 5:24 p.m.•3 views

OpenJDK: weakness in AES implementation (8308682)

RedHat Linux•added 2023/07/19 5:21 p.m.•4 views

OpenJDK: HTTP client insufficient file name validation (8302475)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle...

3.1CVSS7.3AI score0.00866EPSS

RedHat Linux•added 2023/07/19 5:19 p.m.•4 views

OpenJDK: weakness in AES implementation (8308682)