Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jdk vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2009-3866
The Java Web Start Installer in Sun Java SE in JDK and JRE 6 before Update 17 does not properly use security model permissions when removing installer extensions, which allows remote malicious users to execute arbitrary code by modifying a certain JNLP file to have a URL field th...
Sun Jdk 1.6.0
Sun Jre 1.6.0
1000
VMScore
CVE-2008-5353
The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and previous versions; JDK and JRE 5.0 Update 16 and previous versions; and SDK and JRE 1.4.2_18 and previous versions does not properly enforce context of ZoneInfo objects during deserialization, which allows rem...
Sun Jdk 6
Sun Jre 6
Sun Jre 5.0
Sun Jre
Sun Jdk 5.0
Sun Sdk
Sun Sdk 1.4.2 14
Sun Jre 1.4.2 13
Sun Sdk 1.4.2 10
Sun Jre 1.4.2 9
Sun Sdk 1.4.2 6
Sun Jre 1.4.2 5
Sun Jre 1.4.2 1
Sun Sdk 1.4.2 1
Sun Jre 1.4.2 16
Sun Sdk 1.4.2 16
Sun Sdk 1.4.2 12
Sun Jre 1.4.2 11
Sun Sdk 1.4.2 8
Sun Jre 1.4.2 7
Sun Sdk 1.4.2 4
Sun Jre 1.4.2 3
4 EDB exploits
2 Github repositories
3 Articles
945
VMScore
CVE-2009-3867
Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x prior to 1.3.1_27, and SDK and JRE 1.4.x prior to 1.4.2_24 allows remote malicious users to execute arbitrary c...
Sun Jdk 1.6.0
Sun Jre 1.6.0
Sun Jdk 1.5.0
Sun Jre 1.5.0
Sun Sdk 1.4.2 6
Sun Sdk 1.4.2 9
Sun Sdk 1.4.2 8
Sun Sdk 1.4.2 11
Sun Sdk 1.4.2 14
Sun Sdk 1.4.2 03
Sun Sdk 1.4.2 12
Sun Sdk 1.4.2 3
Sun Sdk 1.4.2 5
Sun Sdk 1.4.2 20
Sun Sdk 1.4.2 17
Sun Sdk 1.4.2 2
Sun Sdk 1.4.2 13
Sun Sdk 1.4.2 10
Sun Sdk 1.4.2 09
Sun Jre 1.4.2 12
Sun Jre 1.4.2 13
Sun Jre 1.4.2 6
3 EDB exploits
7 Articles
935
VMScore
CVE-2013-2460
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and previous versions, and OpenJDK 7, allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: ...
Oracle Jre 1.7.0
Oracle Jre
Oracle Jdk 1.7.0
Oracle Jdk
1 EDB exploit
935
VMScore
CVE-2010-1423
Argument injection vulnerability in the URI handler in (a) Java NPAPI plugin and (b) Java Deployment Toolkit in Java 6 Update 10, 19, and other versions, when running on Windows and possibly on Linux, allows remote malicious users to execute arbitrary code via the (1) -J or (2) -...
Oracle Jre 1.6.0
Oracle Jdk 1.6.0
Oracle Jdk
Oracle Jre
1 EDB exploit
1 Article
935
VMScore
CVE-2009-3869
Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x prior to 1.3.1_27, and SDK and JRE 1.4.x prior to 1....
Sun Jdk 1.6.0
Sun Jre 1.6.0
Sun Jdk 1.5.0
Sun Jre 1.5.0
Sun Sdk 1.4.2 9
Sun Sdk 1.4.2 8
Sun Sdk 1.4.2 11
Sun Sdk 1.4.2 14
Sun Sdk 1.4.2 03
Sun Sdk 1.4.2 1
Sun Sdk 1.4.2 10
Sun Sdk 1.4.2 04
Sun Sdk 1.4.2 22
Sun Jre 1.4.2 15
Sun Jre 1.4.2 7
Sun Jre 1.4.2 1
Sun Jre 1.4.2 07
Sun Jre 1.4.2 21
Sun Sdk 1.4.2 7
Sun Sdk 1.4.2 6
Sun Sdk 1.4.2 19
Sun Sdk 1.4.2 16
1 EDB exploit
1 Article
935
VMScore
CVE-2008-1193
Unspecified vulnerability in Java Runtime Environment Image Parsing Library in Sun JDK and JRE 6 Update 4 and previous versions, and 5.0 Update 14 and previous versions, allows remote malicious users to gain privileges via an untrusted application.
Sun Jdk 1.5.0
Sun Jdk 1.6.0
Sun Jre 1.5.0
Sun Jre 1.6.0
1 EDB exploit
935
VMScore
CVE-2007-4381
Unspecified vulnerability in the font parsing implementation in Sun JDK and JRE 5.0 Update 9 and previous versions, and SDK and JRE 1.4.2_14 and previous versions, allows remote malicious users to perform unauthorized actions via an applet that grants certain privileges to itself...
Sun Jdk
Sun Jre
Sun Sdk
1 EDB exploit
935
VMScore
CVE-2004-1029
The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote malicious users to load unsafe classes and execute...
Hp Java Sdk-rte 1.3
Sun Jdk 1.3.1 02
Sun Jdk 1.3.1 03
Sun Jdk 1.3.1 06
Sun Jdk 1.4.0 02
Sun Jdk 1.4.0 03
Sun Jdk 1.4.1
Sun Jdk 1.4.1 03
Sun Jdk 1.4.2 03
Sun Jdk 1.4
Sun Jre 1.3.0
Sun Jre 1.3.1
Sun Jre 1.3.1 02
Sun Jre 1.3.1 05
Sun Jre 1.3.1 06
Sun Jre 1.3.1 09
Sun Jre 1.4.0 03
Sun Jre 1.4.1
Sun Jre 1.4.1 07
Sun Jre 1.4.2
Conectiva Linux 10.0
Sun Jdk 1.3.1 05
1 EDB exploit
891
VMScore
CVE-2020-11975
Apache Unomi allows conditions to use OGNL scripting which offers the possibility to call static Java classes from the JDK that could execute code with the permission level of the running Java process.
Apache Unomi
3 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »