Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graalvm vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2020-8287
Node.js versions prior to 10.23.1, 12.20.1, 14.15.4, 15.5.1 allow two copies of a header field in an HTTP request (for example, two Transfer-Encoding header fields). In this case, Node.js identifies the first header field and ignores the second. This can lead to HTTP Request Smug...
Nodejs Node.js
Debian Debian Linux 10.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Oracle Graalvm 19.3.4
Oracle Graalvm 20.3.0
Siemens Sinec Infrastructure Network Services
1 Github repository
445
VMScore
CVE-2021-44532
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs (Subject Alternative Names) to a string format. It uses this string to check peer certificates against hostnames when validating connections. The string format was subject to an injection vulnerabilit...
Nodejs Node.js
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Enterprise Monitor
Oracle Mysql Connectors
Oracle Mysql Server
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Mysql Workbench
Oracle Mysql Cluster
Debian Debian Linux 11.0
516
VMScore
CVE-2020-8172
TLS session reuse can lead to host certificate verification bypass in node version < 12.18.0 and < 14.4.0.
Nodejs Node.js
Oracle Graalvm 19.3.2
Oracle Graalvm 20.1.0
Oracle Banking Extensibility Workbench 14.4.0
Oracle Banking Extensibility Workbench 14.3.0
Oracle Mysql Cluster
Oracle Blockchain Platform
NA
CVE-2023-21835
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Easily exploitable v...
Oracle Graalvm 21.3.4
Oracle Graalvm 22.3.0
Oracle Graalvm 20.3.8
Oracle Jre 11.0.17
Oracle Jre 17.0.5
Oracle Jre 19.0.1
Oracle Jdk 11.0.17
Oracle Jdk 17.0.5
Oracle Jdk 19.0.1
Azul Zulu 11.60
Azul Zulu 13.52
Azul Zulu 15.44
Azul Zulu 17.38
Azul Zulu 19.30
1 Github repository
445
VMScore
CVE-2021-44533
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 did not handle multi-value Relative Distinguished Names correctly. Attackers could craft certificate subjects containing a single-value Relative Distinguished Name that would be interpreted as a multi-value Relativ...
Nodejs Node.js
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Enterprise Monitor
Oracle Mysql Connectors
Oracle Mysql Workbench
Oracle Mysql Server
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Mysql Cluster
Oracle Mysql Cluster 8.0.29
Debian Debian Linux 11.0
NA
CVE-2023-22041
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10,...
Oracle Jre 17.0.7
Oracle Jre 11.0.19
Oracle Jdk 17.0.7
Oracle Jdk 11.0.19
Oracle Graalvm For Jdk 20.0.1
Oracle Graalvm 21.3.6
Oracle Graalvm 22.3.2
Oracle Graalvm 20.3.10
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Jdk 20.0.1
Oracle Jre 20.0.1
Oracle Graalvm For Jdk 17.0.7
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
NA
CVE-2023-22045
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 2...
Oracle Jre 17.0.7
Oracle Jre 11.0.19
Oracle Jdk 17.0.7
Oracle Jdk 11.0.19
Oracle Graalvm For Jdk 20.0.1
Oracle Graalvm 21.3.6
Oracle Graalvm 22.3.2
Oracle Graalvm 20.3.10
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Jdk 20.0.1
Oracle Jre 20.0.1
Oracle Graalvm For Jdk 17.0.7
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
NA
CVE-2023-22049
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition:...
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Oracle Jre 17.0.7
Oracle Jre 11.0.19
Oracle Jdk 17.0.7
Oracle Jdk 11.0.19
Oracle Graalvm For Jdk 20.0.1
Oracle Graalvm 21.3.6
Oracle Graalvm 22.3.2
Oracle Graalvm 20.3.10
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Jdk 20.0.1
Oracle Jre 20.0.1
Oracle Graalvm For Jdk 17.0.7
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
NA
CVE-2024-20922
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaFX). Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows u...
Oracle Graalvm 21.3.8
Oracle Graalvm 20.3.12
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Netapp Oncommand Insight -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
NA
CVE-2023-21830
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf; Oracle GraalVM Enterprise Edition: 20.3.8 and 21.3.4. Easily exploitable vulner...
Oracle Graalvm 21.3.4
Oracle Graalvm 22.3.0
Oracle Graalvm 20.3.8
Oracle Jre 1.8.0
Oracle Jre 11.0.17
Oracle Jre 17.0.5
Oracle Jre 19.0.1
Oracle Jdk 11.0.17
Oracle Jdk 17.0.5
Oracle Jdk 19.0.1
Oracle Jdk 1.8.0
Oracle Communications Unified Assurance
Azul Zulu 6.51
Azul Zulu 7.57
Azul Zulu 8.66
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »