Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition is vulnerable to an unauthenticated remote attack via multiple protocols. This vulnerability affects multiple versions, including Oracle Java SE 8u391, 11.0.21, 17.0.9, and 21.0.1, Oracle GraalVM for JDK 17.0.9 and 21.0.1, and Oracle GraalVM Enterprise Edition 20.3.12, 21.3.8, and 22.3.4. The vulnerability allows unauthorized access to critical data, including the creation, deletion, or modification of data.
lists.debian.org/debian-lts-announce/2024/01/msg00023.html
secdb.alpinelinux.org/edge/community.yaml
secdb.alpinelinux.org/v3.16/community.yaml
secdb.alpinelinux.org/v3.17/community.yaml
secdb.alpinelinux.org/v3.18/community.yaml
secdb.alpinelinux.org/v3.19/community.yaml
security.netapp.com/advisory/ntap-20240201-0002/
www.oracle.com/security-alerts/cpujan2024.html