Latest netapp cloud insights acquisition unit Vulnerabilities

CVE-2024-20922
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaFX). Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM En...
Oracle GraalVM=20.3.12
Oracle GraalVM=21.3.8
Oracle JDK=1.8.0-update391
Oracle JDK=1.8.0-update391
Oracle JRE=1.8.0-update391
Oracle JRE=1.8.0-update391
and 3 more
CVE-2024-20926
An unspecified vulnerability in Java SE related to the Scripting component could allow a remote attacker to cause high confidentiality impact.
Oracle GraalVM=20.3.12
Oracle GraalVM=21.3.8
Oracle GraalVM=22.3.4
Oracle GraalVM for JDK=17.0.9
Oracle GraalVM for JDK=21.0.1
Oracle JDK=1.8.0-update391
and 25 more
CVE-2024-20952
An unspecified vulnerability in Java SE related to the Security component could allow a remote attacker to cause high confidentiality impact and high integrity impact.
Oracle GraalVM=20.3.12
Oracle GraalVM=21.3.8
Oracle GraalVM=22.3.4
Oracle GraalVM for JDK=17.0.9
Oracle GraalVM for JDK=21.0.1
Oracle JDK=1.8.0-update391
and 32 more
CVE-2024-20918
An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause high confidentiality impact and high integrity impact.
Oracle GraalVM=20.3.12
Oracle GraalVM=21.3.8
Oracle GraalVM=22.3.4
Oracle GraalVM for JDK=17.0.9
Oracle GraalVM for JDK=21.0.1
Oracle JDK=1.8.0-update391
and 32 more
CVE-2024-20932
An unspecified vulnerability in Java SE related to the Security component could allow a remote attacker to cause high integrity impact.
IBM Semeru Runtime<=8.0.302.0 - 8.0.392.0
IBM Semeru Runtime<=11.0.12.0 - 11.0.21.0
IBM Semeru Runtime<=17.0.1.0 - 17.0.9.0
IBM Semeru Runtime<=21.0.1.0
Oracle GraalVM=21.3.8
Oracle GraalVM=22.3.4
and 11 more
CVE-2023-22025
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition, product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE:...
Oracle GraalVM for JDK=17.0.8
Oracle GraalVM for JDK=21
Oracle JDK=1.8.0-update381
Oracle JDK=17.0.8
Oracle JDK=21.0.0
Oracle JRE=1.8.0-update381
and 25 more
CVE-2023-22067
A flaw was discovered in the CORBA component of OpenJDK in the way it performed deserialization of IOR (Interoperable Object Reference) string objects. An untrusted Java application or applet could po...
Oracle JDK=1.8.0-update381
Oracle JDK=1.8.0-update381
Oracle JRE=1.8.0-update381
Oracle JRE=1.8.0-update381
Netapp Cloud Insights Acquisition Unit
IBM QRadar SIEM
and 7 more
CVE-2023-22081
A flaw was found in the PKIX certification path validation algorithm in the JSSE component of OpenJDK. A malicious remote client could use this flaw to craft a X.509 certificate and cause denial of se...
Oracle GraalVM for JDK=17.0.8
Oracle GraalVM for JDK=21
Oracle JDK=1.8.0-update381
Oracle JDK=1.8.0-update381
Oracle JDK=11.0.2
Oracle JDK=17.0.8
and 31 more
CVE-2023-22041
An unspecified vulnerability in Java SE related to the VM component could allow a local attacker to cause high confidentiality impacts.
Oracle GraalVM=20.3.10
Oracle GraalVM=21.3.6
Oracle GraalVM=22.3.2
Oracle GraalVM for JDK=17.0.7
Oracle GraalVM for JDK=20.0.1
Oracle JDK=1.8.0-update371
and 30 more
CVE-2023-22049
An unspecified vulnerability in Java SE related to the Libraries component could allow a remote attacker to cause low integrity impacts.
Debian Debian Linux=11.0
Debian Debian Linux=12.0
Oracle GraalVM=20.3.10
Oracle GraalVM=21.3.6
Oracle GraalVM=22.3.2
Oracle GraalVM for JDK=17.0.7
and 38 more
CVE-2023-22045
An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause low confidentiality impacts.
Oracle GraalVM=20.3.10
Oracle GraalVM=21.3.6
Oracle GraalVM=22.3.2
Oracle GraalVM for JDK=17.0.7
Oracle GraalVM for JDK=20.0.1
Oracle JDK=1.8.0-update371
and 39 more
CVE-2023-22036
An unspecified vulnerability in Java SE related to the Utility component could allow a remote attacker to cause low availability impacts.
redhat/java<11-openjdk-1:11.0.20.0.8-1.el7_9
redhat/java<17-openjdk-1:17.0.8.0.7-2.el8
redhat/java<11-openjdk-1:11.0.20.0.8-2.el8
redhat/java<11-openjdk-1:11.0.20.0.8-1.el8_1
redhat/java<11-openjdk-1:11.0.20.0.8-1.el8_2
redhat/java<11-openjdk-1:11.0.20.0.8-1.el8_4
and 41 more
CVE-2023-22006
An unspecified vulnerability in Java SE related to the Networking component could allow a remote attacker to cause low integrity impacts.
Oracle GraalVM=20.3.10
Oracle GraalVM=21.3.6
Oracle GraalVM=22.3.2
Oracle GraalVM for JDK=17.0.7
Oracle GraalVM for JDK=20.0.1
Oracle JDK=11.0.19
and 28 more
CVE-2023-21968
An unspecified vulnerability in Oracle Java SE and GraalVM Enterprise Edition related to the Libraries component could allow an unauthenticated attacker to cause low integrity impact.
debian/openjdk-11<=11.0.16+8-1~deb10u1
debian/openjdk-17
debian/openjdk-20
debian/openjdk-8
IBM Cloud Pak for Business Automation<=V23.0.1
IBM Cloud Pak for Business Automation<=V21.0.3 - V21.0.3-IF022
and 92 more
CVE-2023-21937
An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the Networking component could allow a remote attacker to cause integrity impact.
Oracle GraalVM=20.3.9
Oracle GraalVM=21.3.5
Oracle GraalVM=22.3.1
Oracle JDK=1.8.0-update361
Oracle JDK=11.0.18
Oracle JDK=17.0.6
and 92 more
CVE-2023-21938
An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the Libraries component could allow a remote attacker to cause integrity impact.
Oracle GraalVM=20.3.8
Oracle GraalVM=21.3.4
Oracle GraalVM=22.3.0
Oracle JDK=1.8.0-update361
Oracle JDK=11.0.18
Oracle JDK=17.0.6
and 92 more
CVE-2023-21939
An HTML validation flaw was found in the Swing component of OpenJDK. A specially crafted HTML document could cause a Swing Java application to misbehave leading to integrity problems.
Oracle GraalVM=20.3.9
Oracle GraalVM=21.3.5
Oracle GraalVM=22.3.1
Oracle JDK=1.8.0-update361
Oracle JDK=11.0.18
Oracle JDK=17.0.6
and 92 more
CVE-2023-21967
An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the JSSE component could allow a remote attacker to cause high availability impact.
Oracle GraalVM=20.3.9
Oracle GraalVM=21.3.5
Oracle GraalVM=22.3.1
Oracle JDK=1.8.0-update361
Oracle JDK=11.0.18
Oracle JDK=17.0.6
and 92 more
CVE-2023-21954
An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the Hotspot component could allow a remote attacker to cause high confidentiality impact.
Oracle GraalVM=20.3.9
Oracle GraalVM=21.3.5
Oracle GraalVM=22.3.1
Oracle JDK=1.8.0-update361
Oracle JDK=11.0.18
Oracle JDK=17.0.6
and 90 more
CVE-2023-21930
An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the JSSE component could allow an unauthenticated attacker to cause high confidentiality impact and high i...
Oracle GraalVM=20.3.9
Oracle GraalVM=21.3.5
Oracle GraalVM=22.3.1
Oracle JDK=1.8.0-update361
Oracle JDK=11.0.18
Oracle JDK=17.0.6
and 92 more
CVE-2022-39399
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, ...
Oracle GraalVM=20.3.7
Oracle GraalVM=21.3.3
Oracle GraalVM=22.2.0
Oracle JDK=11.0.16.1
Oracle JDK=17.0.4.1
Oracle JDK=19
and 20 more
CVE-2022-21626
An unspecified vulnerability in Java SE related to the Security component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown atta...
IBM Cloud Pak for Business Automation<=V22.0.2
IBM Cloud Pak for Business Automation<=V21.0.3 - V21.0.3-IF016
IBM Cloud Pak for Business Automation<=V22.0.1 - V22.0.1-IF006 and later fixes V21.0.2 - V21.0.2-IF012 and later fixesV21.0.1 - V21.0.1-IF007 and later fixesV20.0.1 - V20.0.3 and later fixesV19.0.1 - V19.0.3 and later fixesV18.0.0 - V18.0.2 and later fixes
Oracle GraalVM=20.3.7
Oracle GraalVM=21.3.3
Oracle GraalVM=22.2.0
and 24 more
CVE-2022-21618
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 17.0.4.1, 19; Oracle GraalV...
Oracle GraalVM=21.3.3
Oracle GraalVM=22.2.0
Oracle JDK=17.0.4.1
Oracle JDK=19
Oracle JRE=17.0.4.1
Oracle JRE=19
and 16 more
CVE-2022-21628
Java SE is vulnerable to a denial of service, caused by a flaw in the Lightweight HTTP Server. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause a den...
IBM Cloud Pak for Business Automation<=V22.0.2
IBM Cloud Pak for Business Automation<=V21.0.3 - V21.0.3-IF016
IBM Cloud Pak for Business Automation<=V22.0.1 - V22.0.1-IF006 and later fixes V21.0.2 - V21.0.2-IF012 and later fixesV21.0.1 - V21.0.1-IF007 and later fixesV20.0.1 - V20.0.3 and later fixesV19.0.1 - V19.0.3 and later fixesV18.0.0 - V18.0.2 and later fixes
Oracle GraalVM=20.3.7
Oracle GraalVM=21.3.3
Oracle GraalVM=22.2.0
and 30 more
CVE-2022-21619
An unspecified vulnerability in Java SE related to the Security component could allow an unauthenticated attacker to update, insert or delete data resulting in a low integrity impact using unknown att...
IBM Cloud Pak for Business Automation<=V22.0.2
IBM Cloud Pak for Business Automation<=V21.0.3 - V21.0.3-IF016
IBM Cloud Pak for Business Automation<=V22.0.1 - V22.0.1-IF006 and later fixes V21.0.2 - V21.0.2-IF012 and later fixesV21.0.1 - V21.0.1-IF007 and later fixesV20.0.1 - V20.0.3 and later fixesV19.0.1 - V19.0.3 and later fixesV18.0.0 - V18.0.2 and later fixes
Oracle GraalVM=20.3.7
Oracle GraalVM=21.3.3
Oracle GraalVM=22.2.0
and 30 more
CVE-2022-21624
An unspecified vulnerability in Java SE related to the Security component could allow an unauthenticated attacker to update, insert or delete data resulting in a low integrity impact using unknown att...
IBM Cognos Command Center<=10.2.4.1
Oracle GraalVM=20.3.7
Oracle GraalVM=21.3.3
Oracle GraalVM=22.2.0
Oracle JDK=1.8.0-update341
Oracle JDK=1.8.0-update345
and 28 more
CVE-2022-21540
An unspecified vulnerability in Java SE related to the VM component could allow an unauthenticated attacker to obtain sensitive information resulting in a low confidentiality impact using unknown atta...
debian/openjdk-11
debian/openjdk-17
debian/openjdk-8
IBM Cloud Transformation Advisor<=2.0.1 - 3.3.1
Oracle GraalVM=20.3.6
Oracle GraalVM=21.3.2
and 155 more
CVE-2022-34169
Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets
debian/bcel<=6.2-1
debian/openjdk-11
debian/openjdk-17
debian/openjdk-8
maven/xalan:xalan<2.7.3
Apache Xalan-Java<=2.7.2
and 158 more
CVE-2022-21549
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 17.0.3.1; Oracle Graal...
Oracle GraalVM=21.3.2
Oracle GraalVM=22.1.0
Oracle JDK=17.0.3.1
Oracle JRE=17.0.3.1
Apple Catalina=17.34
Fedoraproject Fedora=35
and 12 more
CVE-2022-21541
An unspecified vulnerability in Java SE related to the VM component could allow an unauthenticated attacker to cause no confidentiality impact, high integrity impact, and no availability impact.
debian/openjdk-11
debian/openjdk-17
debian/openjdk-8
IBM Cloud Transformation Advisor<=2.0.1 - 3.3.1
Oracle GraalVM=20.3.6
Oracle GraalVM=21.3.2
and 154 more
CVE-2022-21496
An unspecified vulnerability in Java SE related to the JNDI component could allow an unauthenticated attacker to cause no confidentiality impact, low integrity impact, and no availability impact.
redhat/java<11-openjdk-1:11.0.15.0.9-2.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.332.b09-1.el7_9
redhat/java<1.7.1-ibm-1:1.7.1.5.10-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.7.10-1jpp.1.el7
redhat/java<11-openjdk-1:11.0.15.0.9-2.el8_5
redhat/java<17-openjdk-1:17.0.3.0.6-2.el8_5
and 48 more
CVE-2022-21476
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14,...
redhat/java<11-openjdk-1:11.0.15.0.9-2.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.332.b09-1.el7_9
redhat/java<11-openjdk-1:11.0.15.0.9-2.el8_5
redhat/java<17-openjdk-1:17.0.3.0.6-2.el8_5
redhat/java<1.8.0-openjdk-1:1.8.0.332.b09-1.el8_5
redhat/java<11-openjdk-1:11.0.15.0.9-2.el8_1
and 168 more
CVE-2022-21434
An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, low integrity impact, and no availability impact.
redhat/java<11-openjdk-1:11.0.15.0.9-2.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.332.b09-1.el7_9
redhat/java<1.7.1-ibm-1:1.7.1.5.10-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.7.10-1jpp.1.el7
redhat/java<11-openjdk-1:11.0.15.0.9-2.el8_5
redhat/java<17-openjdk-1:17.0.3.0.6-2.el8_5
and 54 more
CVE-2022-21443
An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown att...
redhat/java<11-openjdk-1:11.0.15.0.9-2.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.332.b09-1.el7_9
redhat/java<1.7.1-ibm-1:1.7.1.5.10-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.7.10-1jpp.1.el7
redhat/java<11-openjdk-1:11.0.15.0.9-2.el8_5
redhat/java<17-openjdk-1:17.0.3.0.6-2.el8_5
and 50 more
CVE-2022-21426
An unspecified vulnerability in Java SE related to the JAXP component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown attack v...
redhat/java<11-openjdk-1:11.0.15.0.9-2.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.332.b09-1.el7_9
redhat/java<1.8.0-ibm-1:1.8.0.8.0-1jpp.1.el7
redhat/java<11-openjdk-1:11.0.15.0.9-2.el8_5
redhat/java<17-openjdk-1:17.0.3.0.6-2.el8_5
redhat/java<1.8.0-openjdk-1:1.8.0.332.b09-1.el8_5
and 52 more
CVE-2022-21271
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13;...
Oracle GraalVM=20.3.4
Oracle GraalVM=21.3.0
Oracle HTTP Server=12.2.1.3.0
Oracle HTTP Server=12.2.1.4.0
Oracle JDK=1.7.0-update321
Oracle JDK=1.8.0-update311
and 21 more
CVE-2022-21248
An unspecified vulnerability in Java SE related to the Serialization component could allow an unauthenticated attacker to cause no confidentiality impact, low integrity impact, and no availability imp...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<1.8.0-ibm-1:1.8.0.7.5-1jpp.1.el7
redhat/java<1.7.1-ibm-1:1.7.1.5.5-1jpp.1.el7
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
and 165 more
CVE-2022-21291
A flaw was found in the way the Hotspot component of OpenJDK processed classes with _fields that needed to be written to in Rewriter::scan_method(). A specially-crafted Java class file could use this ...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_1
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_2
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_4
and 37 more
CVE-2022-21366
A flaw was found in the way the TIFFFaxDecompressor, TIFFLZWDecompressor, and TIFFPackBitsDecompressor classes implementations in the ImageIO component of OpenJDK handled memory allocations when proce...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_1
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_2
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_4
and 32 more
CVE-2022-21340
A flaw was found in the way the Attributes class in the Libraries component of OpenJDK performed reading of attributes with very long values from JAR file manifests. A specially-crafted JAR archive co...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<1.8.0-ibm-1:1.8.0.7.5-1jpp.1.el7
redhat/java<1.7.1-ibm-1:1.7.1.5.5-1jpp.1.el7
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
and 163 more
CVE-2022-21305
A flaw was found in the way the Hotspot component of OpenJDK handled array indexes on 64-bit x86 platform. A large index could trigger a displacement overflow in LIRGenerator::emit_array_address, poss...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-2.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_1
and 160 more
CVE-2022-21341
An unspecified vulnerability in Java SE related to the Serialization component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<1.8.0-ibm-1:1.8.0.7.5-1jpp.1.el7
redhat/java<1.7.1-ibm-1:1.7.1.5.5-1jpp.1.el7
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
and 163 more
CVE-2022-21365
An integer overflow flaw was found in the fix applied to the BMPImageReader class implementation in the ImageIO component of OpenJDK to address the <a href="https://access.redhat.com/security/cve/CVE-...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<1.8.0-ibm-1:1.8.0.7.5-1jpp.1.el7
redhat/java<1.7.1-ibm-1:1.7.1.5.5-1jpp.1.el7
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
and 163 more
CVE-2022-21360
A flaw was found in the way the BMPImageReader class implementation in the ImageIO component of OpenJDK preformed memory allocations when reading palette information from BMP images. A specially-craft...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<1.8.0-ibm-1:1.8.0.7.5-1jpp.1.el7
redhat/java<1.7.1-ibm-1:1.7.1.5.5-1jpp.1.el7
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
and 163 more
CVE-2022-21277
A flaw was found in the way the TIFFNullDecompressor class implementation in the ImageIO component of OpenJDK performed reading of uncompressed TIFF files. A specially-crafted TIFF image could cause t...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_1
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_2
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_4
and 32 more
CVE-2022-21299
A flaw was found in the way the XMLEntityScanner and XML11EntityScanner classes in the JAXP component of OpenJDK handled and normalized newlines in XML entities. A specially-crafted XML document could...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<1.7.1-ibm-1:1.7.1.5.10-1jpp.1.el7
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-2.el8_5
and 166 more
CVE-2022-21296
It was discovered that the XMLEntityManager class implementation in the JAXP component of OpenJDK did not properly perform access checks. A Java application using SAX XML parser in certain configurati...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-2.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_1
and 160 more
CVE-2022-21282
It was discovered that the TransformerImpl class implementation in the JAXP component of OpenJDK did not properly check access restrictions when performing URI resolution. This could possibly lead to ...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-2.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-1.el8_1
and 160 more
CVE-2022-21294
An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown att...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<1.8.0-ibm-1:1.8.0.7.5-1jpp.1.el7
redhat/java<1.7.1-ibm-1:1.7.1.5.5-1jpp.1.el7
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
and 163 more
CVE-2022-21293
An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown att...
redhat/java<11-openjdk-1:11.0.14.0.9-1.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.322.b06-1.el7_9
redhat/java<1.8.0-ibm-1:1.8.0.7.5-1jpp.1.el7
redhat/java<1.7.1-ibm-1:1.7.1.5.5-1jpp.1.el7
redhat/java<17-openjdk-1:17.0.2.0.8-4.el8_5
redhat/java<11-openjdk-1:11.0.14.0.9-2.el8_5
and 164 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203