Oracle

Jre

782 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.3

CVE-2018-2942

  • EPSS 0.61%
  • Veröffentlicht 18.07.2018 13:29:02
  • Zuletzt bearbeitet 21.11.2024 04:04:48

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Windows DLL). Supported versions that are affected are Java SE: 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

4.3

CVE-2018-2952

  • EPSS 0.06%
  • Veröffentlicht 18.07.2018 13:29:02
  • Zuletzt bearbeitet 21.11.2024 04:04:49

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult t...

6.5

CVE-2018-14048

Exploit
  • EPSS 0.9%
  • Veröffentlicht 13.07.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:48:30

An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image.

6.5

CVE-2018-13785

  • EPSS 2.92%
  • Veröffentlicht 09.07.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:47:58

In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service.

6.5

CVE-2018-11212

Exploit
  • EPSS 0.73%
  • Veröffentlicht 16.05.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:54

An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.

8.3

CVE-2018-2825

  • EPSS 1.13%
  • Veröffentlicht 19.04.2018 02:29:05
  • Zuletzt bearbeitet 06.05.2025 15:15:56

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). The supported version that is affected is Java SE: 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols t...

8.3

CVE-2018-2826

  • EPSS 2.92%
  • Veröffentlicht 19.04.2018 02:29:05
  • Zuletzt bearbeitet 06.05.2025 15:15:56

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). The supported version that is affected is Java SE: 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols t...

7.7

CVE-2018-2811

  • EPSS 0.16%
  • Veröffentlicht 19.04.2018 02:29:04
  • Zuletzt bearbeitet 21.11.2024 04:04:30

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Install). Supported versions that are affected are Java SE: 8u162 and 10. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure wher...

8.3

CVE-2018-2814

  • EPSS 0.41%
  • Veröffentlicht 19.04.2018 02:29:04
  • Zuletzt bearbeitet 21.11.2024 04:04:31

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unaut...

5.3

CVE-2018-2815

  • EPSS 0.63%
  • Veröffentlicht 19.04.2018 02:29:04
  • Zuletzt bearbeitet 06.05.2025 15:15:56

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploi...