Oracle

Graalvm

176 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2022-21248

  • EPSS 0.08%
  • Veröffentlicht 19.01.2022 12:15:10
  • Zuletzt bearbeitet 21.11.2024 06:44:11

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20...

6.5

CVE-2021-22959

Exploit
  • EPSS 0.21%
  • Veröffentlicht 15.11.2021 15:15:06
  • Zuletzt bearbeitet 21.11.2024 05:51:01

The parser in accepts requests with a space (SP) right after the header name before the colon. This can lead to HTTP Request Smuggling (HRS) in llhttp < v2.1.4 and < v6.0.6.

6.5

CVE-2021-22960

Exploit
  • EPSS 0.18%
  • Veröffentlicht 03.11.2021 20:15:08
  • Zuletzt bearbeitet 21.11.2024 05:51:01

The parse function in llhttp < 2.1.4 and < 6.0.6. ignores chunk extensions when parsing the body of chunked requests. This leads to HTTP Request Smuggling (HRS) under certain conditions.

4.3

CVE-2021-35603

  • EPSS 0.12%
  • Veröffentlicht 20.10.2021 11:17:05
  • Zuletzt bearbeitet 21.11.2024 06:12:37

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult ...

5

CVE-2021-35586

  • EPSS 0.17%
  • Veröffentlicht 20.10.2021 11:16:59
  • Zuletzt bearbeitet 21.11.2024 06:12:35

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily ...

2.6

CVE-2021-35588

  • EPSS 0.08%
  • Veröffentlicht 20.10.2021 11:16:59
  • Zuletzt bearbeitet 21.11.2024 06:12:35

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u311, 8u301; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit...

5

CVE-2021-35578

  • EPSS 0.14%
  • Veröffentlicht 20.10.2021 11:16:55
  • Zuletzt bearbeitet 21.11.2024 06:12:34

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitabl...

6.3

CVE-2021-35567

  • EPSS 0.17%
  • Veröffentlicht 20.10.2021 11:16:38
  • Zuletzt bearbeitet 15.08.2025 20:23:58

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily explo...

5

CVE-2021-35564

  • EPSS 0.11%
  • Veröffentlicht 20.10.2021 11:16:37
  • Zuletzt bearbeitet 21.11.2024 06:12:31

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Keytool). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily ...

5

CVE-2021-35565

  • EPSS 0.15%
  • Veröffentlicht 20.10.2021 11:16:37
  • Zuletzt bearbeitet 21.11.2024 06:12:32

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploit...