Lucene search

K

Veracode Vulnerability DatabaseVERACODE:35225

HistoryApr 24, 2022 - 12:27 a.m.

Privilege Escalation

2022-04-2400:27:33

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

35

openjdk

privilege escalation

authorization validation

oracle java se

oracle graalvm enterprise edition

software

EPSS

0.002

Percentile

56.1%

openjdk is vulnerable to privilege escalation. The vulnerability exists due to a lack of validation of authorization allowing an attacker to update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data.

References

lists.debian.org/debian-lts-announce/2022/05/msg00017.html

secdb.alpinelinux.org/edge/community.yaml

secdb.alpinelinux.org/v3.15/community.yaml

security.netapp.com/advisory/ntap-20220429-0006/

www.debian.org/security/2022/dsa-5128

www.debian.org/security/2022/dsa-5131

www.oracle.com/security-alerts/cpuapr2022.html

EPSS

0.002

Percentile

56.1%