Jdk CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (790 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2014-0453	7 Canonical, Debian, Ibm and 4 more	12 Ubuntu Linux, Debian Linux, Forms Viewer and 9 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.
CVE-2014-0459	4 Canonical, Debian, Oracle and 1 more	7 Ubuntu Linux, Debian Linux, Jdk and 4 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect availability via unknown vectors related to 2D.
CVE-2014-0451	4 Canonical, Debian, Oracle and 1 more	8 Ubuntu Linux, Debian Linux, Jdk and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-2412.
CVE-2014-0446	4 Canonical, Debian, Oracle and 1 more	8 Ubuntu Linux, Debian Linux, Jdk and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
CVE-2014-0452	4 Canonical, Debian, Oracle and 1 more	8 Ubuntu Linux, Debian Linux, Jdk and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0458 and CVE-2014-2423.
CVE-2014-4288	2 Oracle, Redhat	5 Jdk, Jre, Network Satellite and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6493, CVE-2014-6503, and CVE-2014-6532.
CVE-2014-0429	7 Canonical, Debian, Ibm and 4 more	12 Ubuntu Linux, Debian Linux, Forms Viewer and 9 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
CVE-2015-8126	9 Apple, Canonical, Debian and 6 more	24 Mac Os X, Ubuntu Linux, Debian Linux and 21 more	2025-04-12	N/A
Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image.
CVE-2014-0432	2 Oracle, Redhat	4 Jdk, Jre, Rhel Extras and 1 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0455 and CVE-2014-2402.
CVE-2016-3422	2 Oracle, Redhat	5 Jdk, Jre, Network Satellite and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect availability via vectors related to 2D.
CVE-2016-0494	3 Canonical, Oracle, Redhat	7 Ubuntu Linux, Jdk, Jre and 4 more	2025-04-12	N/A
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
CVE-2016-0483	3 Canonical, Oracle, Redhat	8 Ubuntu Linux, Jdk, Jre and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that this is a heap-based buffer overflow in the readImage function, which allows remote attackers to execute arbitrary code via crafted image data.
CVE-2015-4893	2 Oracle, Redhat	7 Jdk, Jre, Jrockit and 4 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803 and CVE-2015-4911.
CVE-2015-4882	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect availability via vectors related to CORBA.
CVE-2015-0492	4 Opensuse, Oracle, Redhat and 1 more	6 Opensuse, Javafx, Jdk and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.
CVE-2015-4860	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4883.
CVE-2015-4000	13 Apple, Canonical, Debian and 10 more	31 Iphone Os, Mac Os X, Safari and 28 more	2025-04-12	N/A
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.
CVE-2015-0406	3 Novell, Oracle, Redhat	6 Suse Linux Enterprise Desktop, Jdk, Jre and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality and availability via unknown vectors related to Deployment.
CVE-2014-6468	2 Oracle, Redhat	3 Jdk, Jre, Enterprise Linux	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
CVE-2015-0410	6 Canonical, Debian, Novell and 3 more	12 Ubuntu Linux, Debian Linux, Suse Linux Enterprise Desktop and 9 more	2025-04-12	N/A
Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security.

« first previous Page 9 of 40. next last »