Jre CVEs and Security Vulnerabilities

Filtered by vendor Oracle Subscriptions

Filtered by product Jre Subscriptions

Search

Switch to Advanced Search (Beta)

Total 774 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2017-10107	4 Debian, Netapp, Oracle and 1 more	30 Debian Linux, Active Iq Unified Manager, Cloud Backup and 27 more	2025-04-20	9.6 Critical
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 9.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H).
CVE-2015-4749	2 Oracle, Redhat	7 Jdk, Jre, Jrockit and 4 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect availability via vectors related to JNDI.
CVE-2015-4748	2 Oracle, Redhat	7 Jdk, Jre, Jrockit and 4 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and Embedded 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security.
CVE-2015-4760	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
CVE-2015-4734	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u101, 7u85 and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to JGSS.
CVE-2015-4733	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI.
CVE-2015-4736	2 Oracle, Redhat	4 Jdk, Jre, Rhel Extras and 1 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
CVE-2015-4803	2 Oracle, Redhat	7 Jdk, Jre, Jrockit and 4 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4893 and CVE-2015-4911.
CVE-2015-4729	2 Oracle, Redhat	4 Jdk, Jre, Rhel Extras and 1 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u80 and 8u45 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Deployment.
CVE-2015-4000	13 Apple, Canonical, Debian and 10 more	31 Iphone Os, Mac Os X, Safari and 28 more	2025-04-12	N/A
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.
CVE-2015-4731	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; Java SE Embedded 7u75; and Java SE Embedded 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.
CVE-2015-2659	2 Oracle, Redhat	4 Jdk, Jre, Enterprise Linux and 1 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 8u45 and Java SE Embedded 8u33 allows remote attackers to affect availability via unknown vectors related to Security.
CVE-2015-2638	2 Oracle, Redhat	6 Javafx, Jdk, Jre and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
CVE-2015-2664	2 Oracle, Redhat	5 Jdk, Jre, Network Satellite and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.
CVE-2015-4732	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2015-2590.
CVE-2015-4805	2 Oracle, Redhat	6 Jdk, Jre, Enterprise Linux and 3 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.
CVE-2015-2627	2 Oracle, Redhat	3 Jdk, Jre, Rhel Extras Oracle Java	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to installation.
CVE-2015-2625	2 Oracle, Redhat	7 Jdk, Jre, Jrockit and 4 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JRockit R28.3.6; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JSSE.
CVE-2015-2628	2 Oracle, Redhat	4 Jdk, Jre, Enterprise Linux and 1 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA.
CVE-2015-2619	2 Oracle, Redhat	5 Javafx, Jdk, Jre and 2 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u80 and 8u45, JavaFX 2.2.80, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via unknown vectors related to 2D.

« first previous Page 7 of 39. next last »