This vulnerability has been received by the NVD and has not been analyzed.
Vulnerability successful the Oracle Java SE, Oracle GraalVM Enterprise Edition merchandise of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.214.171.124. Easily exploitable vulnerability allows unauthenticated attacker with web entree via aggregate protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability tin effect successful unauthorized creation, deletion oregon modification entree to captious information oregon each Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically successful clients moving sandboxed Java Web Start applications oregon sandboxed Java applets, that load and tally untrusted codification (e.g., codification that comes from the internet) and trust connected the Java sandbox for security. This vulnerability tin besides beryllium exploited by utilizing APIs successful the specified Component, e.g., done a web work which supplies information to the APIs. CVSS 3.1 Base Score 7.5 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N).
CVSS 3.x Severity and Metrics:
0 alteration records recovered show changes