Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: jdk Clear
ID Title
CVE-2026-34282 Vulnerability in java (CVE-2026-34282)
vulnerability in java (CVE-2026-34282). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491, 11.0.31, 17.0.19, 21.0.11, 25.0.3, 26.0.1` or later.
CVE-2026-21947 Cross-Site Scripting (XSS) in java (CVE-2026-21947)
cross-site scripting in java (CVE-2026-21947). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481` or later.
CVE-2026-21945 Vulnerability in java (CVE-2026-21945)
vulnerability in java (CVE-2026-21945). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481, 11.0.30, 17.0.18, 21.0.10, 25.0.2` or later.
CVE-2026-21933 Vulnerability in java (CVE-2026-21933)
vulnerability in java (CVE-2026-21933). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481, 11.0.30, 17.0.18, 21.0.10, 25.0.2` or later.
CVE-2026-21932 Vulnerability in java (CVE-2026-21932)
vulnerability in java (CVE-2026-21932). Data can be tampered with by attackers. Mitigation: upgrade to `1.8.0, 8.0.481, 11.0.30, 17.0.18, 21.0.10, 25.0.2` or later.
CVE-2026-21925 Vulnerability in java (CVE-2026-21925)
vulnerability in java (CVE-2026-21925). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481, 11.0.30, 17.0.18, 21.0.10, 25.0.2` or later.
CVE-2025-61748 Vulnerability in java (CVE-2025-61748)
vulnerability in java (CVE-2025-61748). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `21.0.9, 25.0.1` or later.
CVE-2025-53066 Information Disclosure in java (CVE-2025-53066)
vulnerability in java (CVE-2025-53066). Confidential information can be exposed externally. Mitigation: upgrade to `1.8.0, 8.0.471, 11.0.29, 17.0.17, 21.0.9, 25.0.1` or later.
CVE-2025-53057 Vulnerability in java (CVE-2025-53057)
vulnerability in java (CVE-2025-53057). Data can be tampered with by attackers. Mitigation: upgrade to `1.8.0, 8.0.471, 11.0.29, 17.0.17, 21.0.9, 25.0.1` or later.
CVE-2023-21968 Vulnerability in java (CVE-2023-21968)
vulnerability in java (CVE-2023-21968). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.371, 11.0.19, 17.0.7, 20.0.1` or later.
CVE-2022-39399 Vulnerability in java (CVE-2022-39399)
vulnerability in java (CVE-2022-39399). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.17, 17.0.5, 19.0.1` or later.
CVE-2022-21619 Vulnerability in java (CVE-2022-21619)
vulnerability in java (CVE-2022-21619). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.351, 11.0.17, 17.0.5, 19.0.1` or later.
CVE-2022-21618 Authentication Bypass in java (CVE-2022-21618)
authentication bypass in java (CVE-2022-21618). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `17.0.5, 19.0.1` or later.
CVE-2022-21549 Unsafe Deserialization in java (CVE-2022-21549)
vulnerability in java (CVE-2022-21549). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `17.0.4` or later.
CVE-2022-21540 Use-After-Free in java (CVE-2022-21540)
vulnerability in java (CVE-2022-21540). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.351, 8.0.341, 11.0.16, 17.0.4, 18.0.2` or later.
CVE-2022-21476 Vulnerability in java (CVE-2022-21476)
vulnerability in java (CVE-2022-21476). Confidential information can be exposed externally. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.341, 8.0.331, 11.0.15, 17.0.3, 18.0.1` or later.
CVE-2022-21366 Vulnerability in java (CVE-2022-21366)
vulnerability in java (CVE-2022-21366). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.14, 17.0.2` or later.
CVE-2022-21360 Vulnerability in java (CVE-2022-21360)
vulnerability in java (CVE-2022-21360). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21341 Unsafe Deserialization in java (CVE-2022-21341)
vulnerability in java (CVE-2022-21341). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21340 Vulnerability in java (CVE-2022-21340)
vulnerability in java (CVE-2022-21340). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21305 Vulnerability in java (CVE-2022-21305)
vulnerability in java (CVE-2022-21305). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21299 Vulnerability in java (CVE-2022-21299)
vulnerability in java (CVE-2022-21299). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21296 Information Disclosure in java (CVE-2022-21296)
vulnerability in java (CVE-2022-21296). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21294 Vulnerability in java (CVE-2022-21294)
vulnerability in java (CVE-2022-21294). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21293 Vulnerability in java (CVE-2022-21293)
vulnerability in java (CVE-2022-21293). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21291 Vulnerability in java (CVE-2022-21291)
vulnerability in java (CVE-2022-21291). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21283 Vulnerability in java (CVE-2022-21283)
vulnerability in java (CVE-2022-21283). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.14, 17.0.2` or later.
CVE-2022-21282 XXE (XML External Entity) in java (CVE-2022-21282)
vulnerability in java (CVE-2022-21282). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
CVE-2022-21277 Vulnerability in java (CVE-2022-21277)
vulnerability in java (CVE-2022-21277). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.14, 17.0.2` or later.
CVE-2026-22016 Information Disclosure in c (CVE-2026-22016)
vulnerability in c (CVE-2026-22016). Confidential information can be exposed externally.
CVE-2022-21624 Unsafe Deserialization in c (CVE-2022-21624)
vulnerability in c (CVE-2022-21624). Risk of unauthorized operations or information disclosure.
CVE-2022-21626 Vulnerability in c (CVE-2022-21626)
vulnerability in c (CVE-2022-21626). Risk of unauthorized operations or information disclosure.
CVE-2022-34169 Vulnerability in apache (CVE-2022-34169)
vulnerability in apache (CVE-2022-34169). Data can be tampered with by attackers.
CVE-2018-13785 Vulnerability in c (CVE-2018-13785)
vulnerability in c (CVE-2018-13785). Risk of unauthorized operations or information disclosure.
CVE-2019-16168 Vulnerability in c (CVE-2019-16168)
vulnerability in c (CVE-2019-16168). Risk of unauthorized operations or information disclosure.
CVE-2019-13118 Vulnerability in nokogiri (CVE-2019-13118)
vulnerability in nokogiri (CVE-2019-13118). Confidential information can be exposed externally. Exploitable via ``numbers.c``. Mitigation: upgrade to `1.10.5` or later.
CVE-2019-11068 Vulnerability in nokogiri (CVE-2019-11068)
vulnerability in nokogiri (CVE-2019-11068). Successful exploitation can lead to full system takeover. Exploitable via ``xsltCheckRead``. Mitigation: upgrade to `1.10.3` or later.
CVE-2019-7317 Use-After-Free in c (CVE-2019-7317)
vulnerability in c (CVE-2019-7317). Risk of unauthorized operations or information disclosure.
CVE-2013-4578 Vulnerability in oracle (CVE-2013-4578)
vulnerability in oracle (CVE-2013-4578). Risk of unauthorized operations or information disclosure.
CVE-2017-10388 Vulnerability in c (CVE-2017-10388)
vulnerability in c (CVE-2017-10388). Successful exploitation can lead to full system takeover.
CVE-2017-10357 Vulnerability in c (CVE-2017-10357)
vulnerability in c (CVE-2017-10357). Risk of unauthorized operations or information disclosure.
CVE-2017-10346 Vulnerability in c (CVE-2017-10346)
vulnerability in c (CVE-2017-10346). Successful exploitation can lead to full system takeover.
CVE-2017-10347 Vulnerability in c (CVE-2017-10347)
vulnerability in c (CVE-2017-10347). Risk of unauthorized operations or information disclosure.
CVE-2017-10348 Vulnerability in c (CVE-2017-10348)
vulnerability in c (CVE-2017-10348). Risk of unauthorized operations or information disclosure.
CVE-2017-10349 Vulnerability in c (CVE-2017-10349)
vulnerability in c (CVE-2017-10349). Risk of unauthorized operations or information disclosure.
CVE-2017-10355 Vulnerability in c (CVE-2017-10355)
vulnerability in c (CVE-2017-10355). Risk of unauthorized operations or information disclosure.
CVE-2017-10350 Vulnerability in c (CVE-2017-10350)
vulnerability in c (CVE-2017-10350). Risk of unauthorized operations or information disclosure.
CVE-2017-10356 Vulnerability in c (CVE-2017-10356)
vulnerability in c (CVE-2017-10356). Confidential information can be exposed externally.
CVE-2017-10345 Vulnerability in c (CVE-2017-10345)
vulnerability in c (CVE-2017-10345). Risk of unauthorized operations or information disclosure.
CVE-2017-10285 Vulnerability in c (CVE-2017-10285)
vulnerability in c (CVE-2017-10285). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →