Vulnerabilities > Oracle > Graalvm > 19.3.1

DATE CVE VULNERABILITY TITLE RISK
2020-04-15 CVE-2020-2900 Unspecified vulnerability in Oracle Graalvm 19.3.1/20.0.0
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: Tools).
network
high complexity
oracle
3.7
3.7
2020-04-15 CVE-2020-2802 Unspecified vulnerability in Oracle Graalvm 19.3.1/20.0.0
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: GraalVM Compiler).
network
low complexity
oracle
7.7
7.7
2020-04-15 CVE-2020-2799 Unspecified vulnerability in Oracle Graalvm 19.3.1/20.0.0
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: GraalVM Compiler).
network
high complexity
oracle
6.3
6.3
2020-02-07 CVE-2019-15606 Including trailing white space in HTTP header values in Nodejs 10, 12, and 13 causes bypass of authorization based on header value comparisons
network
low complexity
nodejs oracle debian redhat opensuse
critical
 9.8
9.8
2020-02-07 CVE-2019-15605 HTTP Request Smuggling vulnerability in multiple products
HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payload delivery when transfer-encoding is malformed
network
low complexity
nodejs debian fedoraproject opensuse redhat oracle CWE-444
critical
 9.8
9.8
2020-02-07 CVE-2019-15604 Improper Certificate Validation vulnerability in multiple products
Improper Certificate Validation in Node.js 10, 12, and 13 causes the process to abort when sending a crafted X.509 certificate
network
low complexity
nodejs debian opensuse redhat oracle CWE-295
7.5
7.5