Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graalvm vulnerabilities and exploits
(subscribe to this query)
3.7
CVSSv3
CVE-2024-20955
Vulnerability in the Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Compiler). Supported versions that are affected are Oracle GraalVM for JDK: 17.0.9, 21.0.1; Oracle GraalVM Enterprise Edition: 20.3.12, 21.3.8 and 22.3.4. Difficul...
Oracle Graalvm 21.3.8
Oracle Graalvm 22.3.4
Oracle Graalvm 20.3.12
Oracle Graalvm For Jdk 17.0.9
Oracle Graalvm For Jdk 21.0.1
5.7
CVSSv3
CVE-2023-21986
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Native Image). Supported versions that are affected are Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable vulnerability allows unauthenticated attacker with...
Oracle Graalvm 20.3.9
Oracle Graalvm 21.3.5
Oracle Graalvm 22.3.1
7.5
CVSSv3
CVE-2022-21634
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: LLVM Interpreter). Supported versions that are affected are Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker ...
Oracle Graalvm 20.3.7
Oracle Graalvm 21.3.3
Oracle Graalvm 22.2.0
5.3
CVSSv3
CVE-2022-21597
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaScript). Supported versions that are affected are Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with n...
Oracle Graalvm 20.3.7
Oracle Graalvm 21.3.3
Oracle Graalvm 22.2.0
3.7
CVSSv3
CVE-2023-22051
Vulnerability in the Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: GraalVM Compiler). Supported versions that are affected are Oracle GraalVM Enterprise Edition: 21.3.6, 22.3.2; Oracle GraalVM for JDK: 17.0.7 and 20.0.1. Difficult...
Oracle Graalvm For Jdk 20.0.1
Oracle Graalvm 21.3.6
Oracle Graalvm 22.3.2
Oracle Graalvm For Jdk 17.0.7
7.7
CVSSv3
CVE-2020-2802
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: GraalVM Compiler). Supported versions that are affected are 19.3.1 and 20.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols t...
Oracle Graalvm 19.3.1
Oracle Graalvm 20.0.0
7.2
CVSSv3
CVE-2020-14718
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: JVMCI). Supported versions that are affected are 19.3.2 and 20.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromi...
Oracle Graalvm 19.3.2
Oracle Graalvm 20.1.0
3.7
CVSSv3
CVE-2020-2900
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: Tools). Supported versions that are affected are 19.3.1 and 20.0.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to comprom...
Oracle Graalvm 19.3.1
Oracle Graalvm 20.0.0
6.3
CVSSv3
CVE-2020-2799
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: GraalVM Compiler). Supported versions that are affected are 19.3.1 and 20.0.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols...
Oracle Graalvm 19.3.1
Oracle Graalvm 20.0.0
9.1
CVSSv3
CVE-2019-17560
The "Apache NetBeans" autoupdate system does not validate SSL certificates and hostnames for https based downloads. This allows an malicious user to intercept downloads of autoupdates and modify the download, potentially injecting malicious code. “Apache NetBeans&...
Apache Netbeans
Oracle Graalvm 19.3.2
Oracle Graalvm 20.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »