Lucene search
K
OracleJava Virtual Machine

12 matches found

CVE
CVE
added 2024/04/16 9:26 p.m.103 views

CVE-2024-21093

The CVE-2024-21093 entry concerns the Java VM component of Oracle Database Server. Affected are Oracle Database Server versions 19.3–19.22 and 21.3–21.13. The issue allows a low-privileged user with Create Session/Create Procedure and network access via Oracle Net to compromise the Java VM, with ...

5.3CVSS5.8AI score0.00432EPSS
CVE
CVE
added 2025/04/15 8:31 p.m.96 views

CVE-2025-30736

CVE-2025-30736 affects Oracle Database Server's Java VM component. Affected versions: 19.3–19.26, 21.3–21.17, and 23.4–23.7. The vulnerability allows an unauthenticated attacker with network access via multiple protocols to compromise the Java VM, potentially leading to unauthorized creation, del...

7.4CVSS6.7AI score0.00328EPSS
CVE
CVE
added 2025/01/21 8:53 p.m.89 views

CVE-2025-21553

CVE-2025-21553 affects Oracle Database Server Java VM. Affected versions: 19.3–19.25, 21.3–21.16, 23.4–23.6. The issue enables a low-privilege user with Create Session/Create Procedure and network access via Oracle Net to compromise the Java VM, potentially enabling unauthorized updates/deletes a...

4.2CVSS2.9AI score0.00237EPSS
CVE
CVE
added 2023/01/17 11:31 p.m.82 views

CVE-2022-39429

The CVE-2022-39429 entry affects Oracle Database Server’s Java VM component on 19c and 21c. The vulnerability is exploitable by a low-privilege attacker with Create Procedure privilege and network access via Oracle Net, enabling partial denial of service of the Java VM. This conclusion is support...

4.3CVSS3.6AI score0.00561EPSS
CVE
CVE
added 2021/10/20 10:50 a.m.78 views

CVE-2021-35619

CVE-2021-35619 is a vulnerability in the Java VM component of Oracle Database Server affecting Oracle versions 12.1.0.2, 12.2.0.1, 19c and 21c. The issue allows a low-privilege attacker with Create Procedure privilege and network access via Oracle Net to compromise the Java VM, with successful at...

7.1CVSS6.5AI score0.00869EPSS
CVE
CVE
added 2022/10/18 12:0 a.m.78 views

CVE-2022-39419

Oracle Database Server’s Java VM component (19c and 21c) is affected by CVE-2022-39419. A low-privilege attacker with Create Procedure privilege and network access via Oracle Net can read a subset of Java VM data due to a vulnerability in the Java VM component. The issue is documented across mult...

4.3CVSS3.2AI score0.00451EPSS
CVE
CVE
added 2021/07/20 10:44 p.m.73 views

CVE-2021-2438

CVE-2021-2438 affects the Java VM component of Oracle Database Server. Affected versions include Oracle 12.1.0.2, 12.2.0.1, and 19c. A low-privileged attacker with Create Procedure privilege and network access via Oracle Net can exploit this to cause partial denial of service of the Java VM. The ...

4.3CVSS3.5AI score0.0084EPSS
CVE
CVE
added 2020/10/21 2:4 p.m.59 views

CVE-2020-14743

CVE-2020-14743 is a vulnerability in the Oracle Database Server Java VM component affecting 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c, and 19c. The issue allows a low-privileged attacker with Create Procedure privilege and network access via multiple protocols to compromise the Java VM, potentially leadi...

4.9CVSS4AI score0.00742EPSS
CVE
CVE
added 2026/01/20 9:56 p.m.34 views

CVE-2026-21975

The CVE-2026-21975 entry describes a vulnerability in the Java VM component of Oracle Database Server. Affected: Oracle Database Server Java VM , versions 19.3-19.29 and 21.3-21.20 . Root cause: vulnerability in the Java VM allows a high privileged attacker with Authenticated User privilege and n...

4.5CVSS5.4AI score0.00215EPSS
CVE
CVE
added 2025/07/15 7:27 p.m.32 views

CVE-2025-50069

CVE-2025-50069 affects the Java VM component of Oracle Database Server. Affected versions are 19.3–19.27 and 21.3–21.18. An attacker with Create Session and Create Procedure privileges and network access via Oracle Net can exploit the Java VM to gain unauthorized access to data or data across all...

7.7CVSS6.6AI score0.00314EPSS
CVE
CVE
added 2026/04/21 8:35 p.m.20 views

CVE-2026-35229

CVE-2026-35229 concerns the Java VM component of Oracle Database Server, affecting 19.3–19.30 and 21.3–21.21. An unauthenticated attacker with network access via Oracle Net can compromise the Java VM, potentially gaining unauthorized access to data or full Java VM data. CVSS v3.1 base score is 7....

7.5CVSS5.7AI score0.00307EPSS
CVE
CVE
added 2025/10/21 8:3 p.m.19 views

CVE-2025-61881

The CVE-2025-61881 issue affects the Java VM component of Oracle Database Server. Affected: Oracle Database Server Java VM versions 19.3–19.28, 21.3–21.19, and 23.4–23.9. Root cause: a vulnerability that allows an unauthenticated attacker with network access via Oracle Net to compromise the Java ...

5.9CVSS5.5AI score0.00214EPSS