Java Software Development Kit Security Vulnerabilities and Issues — Java Software Development Kit CVE List

Lucene search

MicrosoftJava Software Development Kit

4 matches found

CVE•added 2018/05/09 7:29 p.m.•97 views

CVE-2018-8119

A spoofing vulnerability exists when the Azure IoT Device Provisioning AMQP Transport library improperly validates certificates over the AMQP protocol, aka "Azure IoT SDK Spoofing Vulnerability." This affects C# SDK, C SDK, Java SDK.

6.8CVSS5.5AI score0.00383EPSS

CVE•added 2018/09/13 12:29 a.m.•64 views

CVE-2018-8479

A spoofing vulnerability exists for the Azure IoT Device Provisioning for the C SDK library using the HTTP protocol on Windows platform, aka "Azure IoT SDK Spoofing Vulnerability." This affects C SDK.

6.8CVSS5.7AI score0.00648EPSS

CVE•added 2019/03/06 12:0 a.m.•55 views

CVE-2019-0729

An Elevation of Privilege vulnerability exists in the way Azure IoT Java SDK generates symmetric keys for encryption, allowing an attacker to predict the randomness of the key, aka 'Azure IoT Java SDK Elevation of Privilege Vulnerability'.

9.8CVSS9.3AI score0.01415EPSS

CVE•added 2019/03/06 12:0 a.m.•49 views

CVE-2019-0741

An information disclosure vulnerability exists in the way Azure IoT Java SDK logs sensitive information, aka 'Azure IoT Java SDK Information Disclosure Vulnerability'.

7.5CVSS7AI score0.03317EPSS