Jdk CVEs and Security Vulnerabilities

Filtered by vendor Oracle Subscriptions

Filtered by product Jdk Subscriptions

Search

Switch to Advanced Search (Beta)

Total 783 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2015-4000	13 Apple, Canonical, Debian and 10 more	31 Iphone Os, Mac Os X, Safari and 28 more	2025-04-12	N/A
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.
CVE-2016-3511	2 Oracle, Redhat	5 Jdk, Jre, Network Satellite and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Deployment.
CVE-2014-4223	2 Oracle, Redhat	4 Jdk, Jre, Enterprise Linux and 1 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u60 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-2483.
CVE-2014-2401	4 Ibm, Microsoft, Oracle and 1 more	8 Forms Viewer, Windows, Javafx and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality via unknown vectors related to 2D.
CVE-2016-3443	2 Oracle, Redhat	5 Jdk, Jre, Network Satellite and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information via crafted font data, which triggers an out-of-bounds read.
CVE-2014-2402	3 Canonical, Oracle, Redhat	6 Ubuntu Linux, Jdk, Jre and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-0455.
CVE-2014-4208	2 Oracle, Redhat	4 Jdk, Jre, Rhel Extras and 1 more	2025-04-12	N/A
Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4220.
CVE-2014-2412	4 Canonical, Debian, Oracle and 1 more	8 Ubuntu Linux, Debian Linux, Jdk and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, SE 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-0451.
CVE-2014-2414	4 Canonical, Debian, Oracle and 1 more	8 Ubuntu Linux, Debian Linux, Jdk and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXB.
CVE-2014-2421	7 Canonical, Debian, Ibm and 4 more	12 Ubuntu Linux, Debian Linux, Forms Viewer and 9 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
CVE-2014-2423	4 Canonical, Debian, Oracle and 1 more	8 Ubuntu Linux, Debian Linux, Jdk and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-0458.
CVE-2014-2428	4 Ibm, Microsoft, Oracle and 1 more	7 Forms Viewer, Windows, Jdk and 4 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
CVE-2016-3426	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE.
CVE-2016-3449	2 Oracle, Redhat	5 Jdk, Jre, Network Satellite and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Deployment.
CVE-2016-3485	1 Oracle	3 Jdk, Jre, Jrockit	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.
CVE-2016-3503	2 Oracle, Redhat	3 Jdk, Jre, Rhel Extras Oracle Java	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install.
CVE-2015-0410	6 Canonical, Debian, Novell and 3 more	12 Ubuntu Linux, Debian Linux, Suse Linux Enterprise Desktop and 9 more	2025-04-12	N/A
Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security.
CVE-2016-0466	3 Canonical, Oracle, Redhat	7 Ubuntu Linux, Jdk, Jre and 4 more	2025-04-12	N/A
Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect availability via vectors related to JAXP.
CVE-2016-3610	2 Oracle, Redhat	5 Jdk, Jre, Linux and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3598.
CVE-2014-6493	2 Oracle, Redhat	5 Jdk, Jre, Network Satellite and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6503, and CVE-2014-6532.

« first previous Page 12 of 40. next last »