VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Oracle
> Graalvm
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-08-03
CVE-2021-32804
Path Traversal vulnerability in multiple products
The npm package "tar" (aka node-tar) before versions 6.1.1, 5.0.6, 4.4.14, and 3.3.2 has a arbitrary File Creation/Overwrite vulnerability due to insufficient absolute path sanitization.
network
low complexity
tar-project
oracle
siemens
CWE-22
8.1
8.1
2021-07-21
CVE-2021-2341
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking).
network
high complexity
oracle
debian
fedoraproject
3.1
3.1
2021-07-21
CVE-2021-2369
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library).
network
low complexity
oracle
debian
4.3
4.3
2021-07-21
CVE-2021-2388
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot).
network
high complexity
oracle
debian
7.5
7.5
2021-05-06
CVE-2021-29921
In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string.
network
low complexity
python
oracle
critical
9.8
9.8
2021-04-22
CVE-2021-2163
Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries).
network
high complexity
oracle
debian
fedoraproject
netapp
5.3
5.3
2021-04-22
CVE-2021-2161
Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries).
network
high complexity
oracle
debian
fedoraproject
netapp
mcafee
5.9
5.9
2021-03-25
CVE-2021-3450
Improper Certificate Validation vulnerability in multiple products
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain.
network
high complexity
openssl
freebsd
netapp
windriver
fedoraproject
tenable
oracle
mcafee
sonicwall
nodejs
CWE-295
7.4
7.4
2021-03-25
CVE-2021-3449
NULL Pointer Dereference vulnerability in multiple products
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client.
network
high complexity
openssl
debian
freebsd
netapp
tenable
fedoraproject
mcafee
checkpoint
oracle
sonicwall
siemens
nodejs
CWE-476
5.9
5.9
2021-03-23
CVE-2021-21349
Deserialization of Untrusted Data vulnerability in multiple products
XStream is a Java library to serialize objects to XML and back again.
network
low complexity
xstream-project
debian
fedoraproject
oracle
CWE-502
8.6
8.6
«
Previous
1
2
...
8
9
10
(current)
11
12
...
14
15
»
Next