Vulnerabilities > Oracle > JDK > Low

DATE CVE VULNERABILITY TITLE RISK
2017-08-08 CVE-2017-10193 Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security).
network
high complexity
oracle debian netapp redhat
3.1
2017-04-24 CVE-2017-3533 Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking).
network
high complexity
oracle redhat debian
3.7
2017-04-24 CVE-2017-3539 Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security).
network
high complexity
oracle redhat debian
3.1
2017-04-24 CVE-2017-3544 Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking).
network
high complexity
oracle redhat debian google
3.7
2017-01-27 CVE-2016-8328 Unspecified vulnerability in Oracle JDK and JRE
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java Mission Control).
network
high complexity
oracle
3.7
2017-01-27 CVE-2017-3259 Unspecified vulnerability in Oracle JDK and JRE
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment).
network
high complexity
oracle
3.7
2016-10-25 CVE-2016-5542 Unspecified vulnerability in Oracle JDK and JRE
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect integrity via vectors related to Libraries.
network
high complexity
oracle
3.1
2016-07-21 CVE-2016-3485 Unspecified vulnerability in Oracle Jdk, JRE and Jrockit
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.
local
high complexity
oracle
2.9
2016-04-21 CVE-2016-3426 Unspecified vulnerability in Oracle JDK and JRE
Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE.
network
high complexity
oracle
3.1
2015-05-21 CVE-2015-4000 Cryptographic Issues vulnerability in multiple products
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.
3.7