Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graalvm vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-2388
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allow...
Oracle Graalvm 20.3.2
Oracle Graalvm 21.1.0
Oracle Jdk 1.8.0
Oracle Jdk 11.0.11
Oracle Jdk 16.0.1
Debian Debian Linux 9.0
Debian Debian Linux 10.0
5.3
CVSSv3
CVE-2021-44532
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs (Subject Alternative Names) to a string format. It uses this string to check peer certificates against hostnames when validating connections. The string format was subject to an injection vulnerabilit...
Nodejs Node.js
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Enterprise Monitor
Oracle Mysql Connectors
Oracle Mysql Server
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Mysql Workbench
Oracle Mysql Cluster
Debian Debian Linux 11.0
7.4
CVSSv3
CVE-2020-8172
TLS session reuse can lead to host certificate verification bypass in node version < 12.18.0 and < 14.4.0.
Nodejs Node.js
Oracle Graalvm 19.3.2
Oracle Graalvm 20.1.0
Oracle Banking Extensibility Workbench 14.4.0
Oracle Banking Extensibility Workbench 14.3.0
Oracle Mysql Cluster
Oracle Blockchain Platform
5.3
CVSSv3
CVE-2023-21835
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Easily exploitable v...
Oracle Graalvm 21.3.4
Oracle Graalvm 22.3.0
Oracle Graalvm 20.3.8
Oracle Jre 11.0.17
Oracle Jre 17.0.5
Oracle Jre 19.0.1
Oracle Jdk 11.0.17
Oracle Jdk 17.0.5
Oracle Jdk 19.0.1
Azul Zulu 11.60
Azul Zulu 13.52
Azul Zulu 15.44
Azul Zulu 17.38
Azul Zulu 19.30
1 Github repository
5.3
CVSSv3
CVE-2021-44533
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 did not handle multi-value Relative Distinguished Names correctly. Attackers could craft certificate subjects containing a single-value Relative Distinguished Name that would be interpreted as a multi-value Relativ...
Nodejs Node.js
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Enterprise Monitor
Oracle Mysql Connectors
Oracle Mysql Workbench
Oracle Mysql Server
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Mysql Cluster
Oracle Mysql Cluster 8.0.29
Debian Debian Linux 11.0
5.1
CVSSv3
CVE-2023-22041
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10,...
Oracle Jre 17.0.7
Oracle Jre 11.0.19
Oracle Jdk 17.0.7
Oracle Jdk 11.0.19
Oracle Graalvm For Jdk 20.0.1
Oracle Graalvm 21.3.6
Oracle Graalvm 22.3.2
Oracle Graalvm 20.3.10
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Jdk 20.0.1
Oracle Jre 20.0.1
Oracle Graalvm For Jdk 17.0.7
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
3.7
CVSSv3
CVE-2023-22045
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 2...
Oracle Jre 17.0.7
Oracle Jre 11.0.19
Oracle Jdk 17.0.7
Oracle Jdk 11.0.19
Oracle Graalvm For Jdk 20.0.1
Oracle Graalvm 21.3.6
Oracle Graalvm 22.3.2
Oracle Graalvm 20.3.10
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Jdk 20.0.1
Oracle Jre 20.0.1
Oracle Graalvm For Jdk 17.0.7
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
3.7
CVSSv3
CVE-2023-22049
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition:...
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Oracle Jre 17.0.7
Oracle Jre 11.0.19
Oracle Jdk 17.0.7
Oracle Jdk 11.0.19
Oracle Graalvm For Jdk 20.0.1
Oracle Graalvm 21.3.6
Oracle Graalvm 22.3.2
Oracle Graalvm 20.3.10
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Jdk 20.0.1
Oracle Jre 20.0.1
Oracle Graalvm For Jdk 17.0.7
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
2.5
CVSSv3
CVE-2024-20922
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaFX). Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows u...
Oracle Graalvm 21.3.8
Oracle Graalvm 20.3.12
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Netapp Oncommand Insight -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
5.3
CVSSv3
CVE-2023-21830
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf; Oracle GraalVM Enterprise Edition: 20.3.8 and 21.3.4. Easily exploitable vulner...
Oracle Graalvm 21.3.4
Oracle Graalvm 22.3.0
Oracle Graalvm 20.3.8
Oracle Jre 1.8.0
Oracle Jre 11.0.17
Oracle Jre 17.0.5
Oracle Jre 19.0.1
Oracle Jdk 11.0.17
Oracle Jdk 17.0.5
Oracle Jdk 19.0.1
Oracle Jdk 1.8.0
Oracle Communications Unified Assurance
Azul Zulu 6.51
Azul Zulu 7.57
Azul Zulu 8.66
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »