Oracle Jre vulnerabilities
790 known vulnerabilities affecting oracle/jre.
Total CVEs
790
CISA KEV
14
actively exploited
Public exploits
32
Exploited in wild
16
Severity breakdown
CRITICAL205HIGH119MEDIUM346LOW118
Vulnerabilities
Page 24 of 40
CVE-2014-2490CRITICALCVSS 9.3v1.7.0v1.8.02014-07-17
CVE-2014-2490 [CRITICAL] CVE-2014-2490: Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote a
Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
nvd
CVE-2014-4263MEDIUMCVSS 4.0v1.5.0v1.6.0+2 more2014-07-17
CVE-2014-4263 [MEDIUM] CVE-2014-4263: Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to "Diffie-Hellman key agreement."
nvd
CVE-2014-4218MEDIUMCVSS 5.0v1.5.0v1.6.0+2 more2014-07-17
CVE-2014-4218 [MEDIUM] CVE-2014-4218: Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to a
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect integrity via unknown vectors related to Libraries.
nvd
CVE-2014-4220MEDIUMCVSS 5.0v1.7.0v1.8.02014-07-17
CVE-2014-4220 [MEDIUM] CVE-2014-4220: Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity
Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4208.
nvd
CVE-2014-4209MEDIUMCVSS 6.4v1.5.0v1.6.0+2 more2014-07-17
CVE-2014-4209 [MEDIUM] CVE-2014-4209: Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to a
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality and integrity via vectors related to JMX.
nvd
CVE-2014-4221MEDIUMCVSS 4.3v1.7.0v1.8.02014-07-17
CVE-2014-4221 [MEDIUM] CVE-2014-4221: Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect confident
Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.
nvd
CVE-2014-4266MEDIUMCVSS 5.0v1.7.0v1.8.02014-07-17
CVE-2014-4266 [MEDIUM] CVE-2014-4266: Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity
Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Serviceability.
nvd
CVE-2014-4264MEDIUMCVSS 5.0v1.7.0v1.8.02014-07-17
CVE-2014-4264 [MEDIUM] CVE-2014-4264: Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect availabil
Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect availability via unknown vectors related to Security.
nvd
CVE-2014-4265MEDIUMCVSS 5.0v1.6.0v1.7.0+1 more2014-07-17
CVE-2014-4265 [MEDIUM] CVE-2014-4265: Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect in
Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment.
nvd
CVE-2014-4244MEDIUMCVSS 4.0v1.5.0v1.6.0+2 more2014-07-17
CVE-2014-4244 [MEDIUM] CVE-2014-4244: Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and JRo
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and JRockit R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.
nvd
CVE-2014-4268MEDIUMCVSS 5.0v1.5.0v1.6.0+2 more2014-07-17
CVE-2014-4268 [MEDIUM] CVE-2014-4268: Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to a
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Swing.
nvd
CVE-2014-4252MEDIUMCVSS 5.0v1.5.0v1.6.0+2 more2014-07-17
CVE-2014-4252 [MEDIUM] CVE-2014-4252: Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to a
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Security.
nvd
CVE-2014-4208LOWCVSS 2.6v1.7.0v1.8.02014-07-17
CVE-2014-4208 [LOW] CVE-2014-4208: Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and 8u5 allows remote atta
Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4220.
nvd
CVE-2014-0461CRITICALCVSS 9.3v1.6.0v1.7.0+1 more2014-04-16
CVE-2014-0461 [CRITICAL] CVE-2014-0461: Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows rem
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
nvd
CVE-2014-2397CRITICALCVSS 9.3v1.7.0v1.8.02014-04-16
CVE-2014-2397 [CRITICAL] CVE-2014-2397: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote att
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
nvd
CVE-2014-0429CRITICALCVSS 10.0v1.5.0v1.6.0+2 more2014-04-16
CVE-2014-0429 [CRITICAL] CVE-2014-0429: Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1;
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
nvd
CVE-2014-0456CRITICALCVSS 10.0v1.5.0v1.6.0+2 more2014-04-16
CVE-2014-0456 [CRITICAL] CVE-2014-0456: Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows rem
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
nvd
CVE-2014-0432CRITICALCVSS 9.3v1.7.0v1.8.02014-04-16
CVE-2014-0432 [CRITICAL] CVE-2014-0432: Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote att
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0455 and CVE-2014-2402.
nvd
CVE-2014-0457CRITICALCVSS 10.0v1.5.0v1.6.0+2 more2014-04-16
CVE-2014-0457 [CRITICAL] CVE-2014-0457: Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.
Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
nvd
CVE-2014-2410CRITICALCVSS 9.3v1.8.02014-04-16
CVE-2014-2410 [CRITICAL] CVE-2014-2410: Unspecified vulnerability in Oracle Java SE 8 allows remote attackers to affect confidentiality, int
Unspecified vulnerability in Oracle Java SE 8 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX.
nvd