| 0 |
| url |
VCID-11vj-5zz4-6fe7 |
| vulnerability_id |
VCID-11vj-5zz4-6fe7 |
| summary |
openjdk: Enhance Buffered Image handling (Oracle CPU 2025-04) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-30698 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69565 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69703 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69661 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.6967 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69651 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69581 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.6956 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69611 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69627 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.6965 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69635 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69621 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-30698 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-30698
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
5.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-11vj-5zz4-6fe7 |
|
| 1 |
| url |
VCID-13t7-vubq-8kae |
| vulnerability_id |
VCID-13t7-vubq-8kae |
| summary |
openjdk: Enhance certificate handling (Oracle CPU 2025-10) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-53057 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.18209 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22397 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22702 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22587 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22602 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22599 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22747 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22535 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22612 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22666 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22683 |
| published_at |
2026-04-11T12:55:00Z |
|
| 11 |
| value |
0.00075 |
| scoring_system |
epss |
| scoring_elements |
0.22642 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-53057 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-53057
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-13t7-vubq-8kae |
|
| 2 |
| url |
VCID-1gha-995s-7qdg |
| vulnerability_id |
VCID-1gha-995s-7qdg |
| summary |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10; Oracle GraalVM Enterprise Edition: 21.3.17. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-22016
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1gha-995s-7qdg |
|
| 3 |
| url |
VCID-2tju-1r8k-sbf9 |
| vulnerability_id |
VCID-2tju-1r8k-sbf9 |
| summary |
OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21094 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61781 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61766 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61787 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61775 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61756 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61798 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61803 |
| published_at |
2026-04-18T12:55:00Z |
|
| 7 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61786 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.617 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.6173 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.61701 |
| published_at |
2026-04-07T12:55:00Z |
|
| 11 |
| value |
0.00417 |
| scoring_system |
epss |
| scoring_elements |
0.6175 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21094 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21094
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2tju-1r8k-sbf9 |
|
| 4 |
| url |
VCID-3tav-ffar-hfhb |
| vulnerability_id |
VCID-3tav-ffar-hfhb |
| summary |
Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-21843 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00103 |
| scoring_system |
epss |
| scoring_elements |
0.28122 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00103 |
| scoring_system |
epss |
| scoring_elements |
0.28209 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30703 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30658 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30613 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30566 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30591 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30573 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.3075 |
| published_at |
2026-04-04T12:55:00Z |
|
| 9 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30561 |
| published_at |
2026-04-07T12:55:00Z |
|
| 10 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30619 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00117 |
| scoring_system |
epss |
| scoring_elements |
0.30653 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-21843 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-21843
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3tav-ffar-hfhb |
|
| 5 |
| url |
VCID-4snj-etwf-eqe8 |
| vulnerability_id |
VCID-4snj-etwf-eqe8 |
| summary |
openjdk: Improve HttpServer Request handling (Oracle CPU 2026-01) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21933 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09035 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09147 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.08972 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.08951 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09105 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09086 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.0901 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.0909 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09121 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09122 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09091 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09077 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21933 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-21933
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4snj-etwf-eqe8 |
|
| 6 |
| url |
VCID-57sd-8y93-qqhu |
| vulnerability_id |
VCID-57sd-8y93-qqhu |
| summary |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10; Oracle GraalVM Enterprise Edition: 21.3.17. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-34282
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-57sd-8y93-qqhu |
|
| 7 |
| url |
VCID-5et1-ytak-xqh7 |
| vulnerability_id |
VCID-5et1-ytak-xqh7 |
| summary |
OpenJDK: Excessive symbol length can lead to infinite loop (8319859) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21138 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.561 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.56186 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.5617 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.56203 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.56205 |
| published_at |
2026-04-18T12:55:00Z |
|
| 5 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.56175 |
| published_at |
2026-04-21T12:55:00Z |
|
| 6 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.56144 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.56165 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.56195 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.56201 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00333 |
| scoring_system |
epss |
| scoring_elements |
0.5621 |
| published_at |
2026-04-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21138 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21138
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5et1-ytak-xqh7 |
|
| 8 |
| url |
VCID-6196-gvhx-ruh8 |
| vulnerability_id |
VCID-6196-gvhx-ruh8 |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21235 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38363 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38417 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38441 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38305 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38355 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.3838 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00216 |
| scoring_system |
epss |
| scoring_elements |
0.44139 |
| published_at |
2026-04-21T12:55:00Z |
|
| 7 |
| value |
0.00216 |
| scoring_system |
epss |
| scoring_elements |
0.44159 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00216 |
| scoring_system |
epss |
| scoring_elements |
0.4422 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00216 |
| scoring_system |
epss |
| scoring_elements |
0.4421 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00216 |
| scoring_system |
epss |
| scoring_elements |
0.44063 |
| published_at |
2026-04-24T12:55:00Z |
|
| 11 |
| value |
0.00216 |
| scoring_system |
epss |
| scoring_elements |
0.44158 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21235 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21235
|
| risk_score |
2.1 |
| exploitability |
0.5 |
| weighted_severity |
4.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6196-gvhx-ruh8 |
|
| 9 |
|
| 10 |
| url |
VCID-6r1k-8y1c-q7fm |
| vulnerability_id |
VCID-6r1k-8y1c-q7fm |
| summary |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10; Oracle GraalVM Enterprise Edition: 21.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition executes to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 2.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-22007
|
| risk_score |
1.3 |
| exploitability |
0.5 |
| weighted_severity |
2.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6r1k-8y1c-q7fm |
|
| 11 |
| url |
VCID-76rb-sg3r-bqce |
| vulnerability_id |
VCID-76rb-sg3r-bqce |
| summary |
OpenJDK: potential UTF8 size overflow (8314794) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21131 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63328 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63338 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63322 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63286 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.6333 |
| published_at |
2026-04-18T12:55:00Z |
|
| 5 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63309 |
| published_at |
2026-04-21T12:55:00Z |
|
| 6 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63258 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63287 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63252 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63303 |
| published_at |
2026-04-08T12:55:00Z |
|
| 10 |
| value |
0.00442 |
| scoring_system |
epss |
| scoring_elements |
0.63321 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21131 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21131
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-76rb-sg3r-bqce |
|
| 12 |
| url |
VCID-8cup-qnc8-wudx |
| vulnerability_id |
VCID-8cup-qnc8-wudx |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20952 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55409 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55495 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55505 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55483 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55466 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55503 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55506 |
| published_at |
2026-04-18T12:55:00Z |
|
| 7 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55485 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55441 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55465 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.00324 |
| scoring_system |
epss |
| scoring_elements |
0.55444 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20952 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-20952
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8cup-qnc8-wudx |
|
| 13 |
| url |
VCID-9n5v-4daz-eyc2 |
| vulnerability_id |
VCID-9n5v-4daz-eyc2 |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21217 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26493 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26618 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26589 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26551 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26767 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26807 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26591 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26658 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26708 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26713 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26668 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26611 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21217 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21217
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9n5v-4daz-eyc2 |
|
| 14 |
| url |
VCID-9urr-3gt2-mfhe |
| vulnerability_id |
VCID-9urr-3gt2-mfhe |
| summary |
OpenJDK: long Exception message leading to crash (8319851) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21011 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56641 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56736 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56745 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56721 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.567 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56731 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56729 |
| published_at |
2026-04-18T12:55:00Z |
|
| 7 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56702 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.5668 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56701 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.00339 |
| scoring_system |
epss |
| scoring_elements |
0.56732 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21011 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21011
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9urr-3gt2-mfhe |
|
| 15 |
| url |
VCID-a282-ksr4-j3cu |
| vulnerability_id |
VCID-a282-ksr4-j3cu |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-22081 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26809 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26849 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26634 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26702 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26753 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26756 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26712 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26655 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26664 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26636 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.26599 |
| published_at |
2026-04-21T12:55:00Z |
|
| 11 |
| value |
0.00097 |
| scoring_system |
epss |
| scoring_elements |
0.2654 |
| published_at |
2026-04-24T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-22081 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-22081
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-a282-ksr4-j3cu |
|
| 16 |
| url |
VCID-a3xk-3wya-s3gm |
| vulnerability_id |
VCID-a3xk-3wya-s3gm |
| summary |
Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-21835 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15345 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15304 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23206 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23039 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23112 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23165 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23185 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23147 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23089 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23104 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23096 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.2325 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-21835 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-21835
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-a3xk-3wya-s3gm |
|
| 17 |
| url |
VCID-apsn-z1br-3bdy |
| vulnerability_id |
VCID-apsn-z1br-3bdy |
| summary |
openjdk: Enhance Certificate Checking (Oracle CPU 2026-01) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21945 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16874 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16615 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16664 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16672 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16709 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.1693 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16714 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16799 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16854 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16832 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16786 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16728 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21945 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-21945
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-apsn-z1br-3bdy |
|
| 18 |
| url |
VCID-b32x-4pu4-jkh4 |
| vulnerability_id |
VCID-b32x-4pu4-jkh4 |
| summary |
openjdk: Better Glyph drawing (Oracle CPU 2025-07) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-30749 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00508 |
| scoring_system |
epss |
| scoring_elements |
0.6625 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00508 |
| scoring_system |
epss |
| scoring_elements |
0.66307 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00508 |
| scoring_system |
epss |
| scoring_elements |
0.66277 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00508 |
| scoring_system |
epss |
| scoring_elements |
0.66247 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00508 |
| scoring_system |
epss |
| scoring_elements |
0.66294 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00521 |
| scoring_system |
epss |
| scoring_elements |
0.66893 |
| published_at |
2026-04-21T12:55:00Z |
|
| 6 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71439 |
| published_at |
2026-04-24T12:55:00Z |
|
| 7 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71388 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71372 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71355 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71401 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71407 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-30749 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-30749
|
| risk_score |
3.6 |
| exploitability |
0.5 |
| weighted_severity |
7.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b32x-4pu4-jkh4 |
|
| 19 |
| url |
VCID-duy9-6f1p-vqah |
| vulnerability_id |
VCID-duy9-6f1p-vqah |
| summary |
openjdk: Enhance Handling of URIs (Oracle CPU 2026-01) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21932 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09259 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09406 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09205 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09204 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09355 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.0931 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09227 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09302 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09346 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09356 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09328 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09314 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21932 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-21932
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-duy9-6f1p-vqah |
|
| 20 |
| url |
VCID-e6dm-6767-9kdk |
| vulnerability_id |
VCID-e6dm-6767-9kdk |
| summary |
openjdk: Improve HTTP client header handling (Oracle CPU 2025-07) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-50059 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32274 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32212 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32311 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32136 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32185 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32619 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32433 |
| published_at |
2026-04-24T12:55:00Z |
|
| 7 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32603 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32641 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32589 |
| published_at |
2026-04-21T12:55:00Z |
|
| 10 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32669 |
| published_at |
2026-04-11T12:55:00Z |
|
| 11 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32631 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-50059 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-50059
|
| risk_score |
3.9 |
| exploitability |
0.5 |
| weighted_severity |
7.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e6dm-6767-9kdk |
|
| 21 |
| url |
VCID-ecr4-rqud-gyhf |
| vulnerability_id |
VCID-ecr4-rqud-gyhf |
| summary |
Multiple vulnerabilities have been found in IcedTea, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-21830 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.3205 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.3209 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31913 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31964 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31993 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31997 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31957 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31923 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31956 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31935 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31907 |
| published_at |
2026-04-21T12:55:00Z |
|
| 11 |
| value |
0.00126 |
| scoring_system |
epss |
| scoring_elements |
0.31739 |
| published_at |
2026-04-24T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-21830 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-21830
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ecr4-rqud-gyhf |
|
| 22 |
| url |
VCID-fau4-ajny-nfbd |
| vulnerability_id |
VCID-fau4-ajny-nfbd |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20921 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00172 |
| scoring_system |
epss |
| scoring_elements |
0.38391 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00172 |
| scoring_system |
epss |
| scoring_elements |
0.3855 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40554 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40564 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40592 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40513 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40563 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40574 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40556 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40536 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00187 |
| scoring_system |
epss |
| scoring_elements |
0.40584 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20921 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-20921
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fau4-ajny-nfbd |
|
| 23 |
| url |
VCID-fwk5-wqvn-4qaz |
| vulnerability_id |
VCID-fwk5-wqvn-4qaz |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20926 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00195 |
| scoring_system |
epss |
| scoring_elements |
0.4123 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00195 |
| scoring_system |
epss |
| scoring_elements |
0.41339 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.437 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.43703 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.43714 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.43651 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.43668 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.43665 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.4369 |
| published_at |
2026-04-04T12:55:00Z |
|
| 9 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.43625 |
| published_at |
2026-04-07T12:55:00Z |
|
| 10 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.43676 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00211 |
| scoring_system |
epss |
| scoring_elements |
0.4368 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20926 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-20926
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fwk5-wqvn-4qaz |
|
| 24 |
| url |
VCID-gwnq-we51-3bey |
| vulnerability_id |
VCID-gwnq-we51-3bey |
| summary |
openjdk: Enhance String handling (Oracle CPU 2025-10) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-61748 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.0979 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09863 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09702 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09671 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09815 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.0984 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09741 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09812 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09865 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09872 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09837 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09821 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-61748 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-61748
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gwnq-we51-3bey |
|
| 25 |
| url |
VCID-h7n1-qfs3-v3fw |
| vulnerability_id |
VCID-h7n1-qfs3-v3fw |
| summary |
OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21012 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.34731 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.35036 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.3504 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.35004 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.3498 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.3502 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.35005 |
| published_at |
2026-04-18T12:55:00Z |
|
| 7 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.3496 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.35055 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.35082 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.34962 |
| published_at |
2026-04-07T12:55:00Z |
|
| 11 |
| value |
0.00146 |
| scoring_system |
epss |
| scoring_elements |
0.35007 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21012 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21012
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h7n1-qfs3-v3fw |
|
| 26 |
| url |
VCID-jxgd-j4wr-tyb7 |
| vulnerability_id |
VCID-jxgd-j4wr-tyb7 |
| summary |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10; Oracle GraalVM Enterprise Edition: 21.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition executes to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 2.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-34268
|
| risk_score |
1.3 |
| exploitability |
0.5 |
| weighted_severity |
2.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jxgd-j4wr-tyb7 |
|
| 27 |
| url |
VCID-jztz-7cuw-t7ep |
| vulnerability_id |
VCID-jztz-7cuw-t7ep |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20945 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.1098 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11022 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12082 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12285 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12331 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.1213 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12211 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.1226 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12267 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12229 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12193 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.1208 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20945 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-20945
|
| risk_score |
2.1 |
| exploitability |
0.5 |
| weighted_severity |
4.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jztz-7cuw-t7ep |
|
| 28 |
| url |
VCID-mt9c-tby1-wqe9 |
| vulnerability_id |
VCID-mt9c-tby1-wqe9 |
| summary |
openjdk: Improve JMX connections (Oracle CPU 2026-01) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21925 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10163 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10194 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10104 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10082 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10215 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10229 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10125 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.102 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1026 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10292 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10251 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10232 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21925 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-21925
|
| risk_score |
2.1 |
| exploitability |
0.5 |
| weighted_severity |
4.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mt9c-tby1-wqe9 |
|
| 29 |
| url |
VCID-n71d-tx76-vbbd |
| vulnerability_id |
VCID-n71d-tx76-vbbd |
| summary |
OpenJDK: Out-of-bounds access in 2D image handling (8324559) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21145 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63659 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63663 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63678 |
| published_at |
2026-04-24T12:55:00Z |
|
| 3 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.6363 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63666 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63676 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63609 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63636 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63595 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.0045 |
| scoring_system |
epss |
| scoring_elements |
0.63647 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21145 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21145
|
| risk_score |
2.1 |
| exploitability |
0.5 |
| weighted_severity |
4.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-n71d-tx76-vbbd |
|
| 30 |
| url |
VCID-nr6u-aysf-7kgk |
| vulnerability_id |
VCID-nr6u-aysf-7kgk |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20919 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00156 |
| scoring_system |
epss |
| scoring_elements |
0.36141 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00156 |
| scoring_system |
epss |
| scoring_elements |
0.36365 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38222 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38286 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38309 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38178 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38228 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38237 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38255 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.3822 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38196 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.0017 |
| scoring_system |
epss |
| scoring_elements |
0.38242 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20919 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-20919
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nr6u-aysf-7kgk |
|
| 31 |
| url |
VCID-ntga-y6cv-a3df |
| vulnerability_id |
VCID-ntga-y6cv-a3df |
| summary |
openjdk: Enhance array handling (Oracle CPU 2025-01) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-21502 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42064 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.41948 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42104 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42078 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42008 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42092 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42029 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42081 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42094 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42116 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42079 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.002 |
| scoring_system |
epss |
| scoring_elements |
0.42054 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-21502 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-21502
|
| risk_score |
2.1 |
| exploitability |
0.5 |
| weighted_severity |
4.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ntga-y6cv-a3df |
|
| 32 |
| url |
VCID-nxx8-nehy-qyhg |
| vulnerability_id |
VCID-nxx8-nehy-qyhg |
| summary |
openjdk: Enhance Path Factories (Oracle CPU 2025-10) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-53066 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17286 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17019 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17073 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17078 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17113 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17335 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17115 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17207 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17263 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17241 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17193 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17132 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-53066 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-53066
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nxx8-nehy-qyhg |
|
| 33 |
| url |
VCID-p9na-7jta-9yg4 |
| vulnerability_id |
VCID-p9na-7jta-9yg4 |
| summary |
openjdk: Enhance TLS protocol support (Oracle CPU 2025-07) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-30754 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0009 |
| scoring_system |
epss |
| scoring_elements |
0.25474 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.29988 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.3003 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.30077 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.29891 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.29952 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00116 |
| scoring_system |
epss |
| scoring_elements |
0.30194 |
| published_at |
2026-04-24T12:55:00Z |
|
| 7 |
| value |
0.00116 |
| scoring_system |
epss |
| scoring_elements |
0.30305 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00116 |
| scoring_system |
epss |
| scoring_elements |
0.30321 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00116 |
| scoring_system |
epss |
| scoring_elements |
0.30304 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00116 |
| scoring_system |
epss |
| scoring_elements |
0.30396 |
| published_at |
2026-04-11T12:55:00Z |
|
| 11 |
| value |
0.00116 |
| scoring_system |
epss |
| scoring_elements |
0.30352 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-30754 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-30754
|
| risk_score |
2.1 |
| exploitability |
0.5 |
| weighted_severity |
4.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-p9na-7jta-9yg4 |
|
| 34 |
| url |
VCID-rggy-f3va-mfay |
| vulnerability_id |
VCID-rggy-f3va-mfay |
| summary |
OpenJDK: RangeCheckElimination array index overflow (8323231) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21147 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72563 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.7249 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.7248 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72522 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72531 |
| published_at |
2026-04-18T12:55:00Z |
|
| 5 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72521 |
| published_at |
2026-04-21T12:55:00Z |
|
| 6 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.7244 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72458 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72434 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72472 |
| published_at |
2026-04-08T12:55:00Z |
|
| 10 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72485 |
| published_at |
2026-04-09T12:55:00Z |
|
| 11 |
| value |
0.00721 |
| scoring_system |
epss |
| scoring_elements |
0.72508 |
| published_at |
2026-04-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21147 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21147
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rggy-f3va-mfay |
|
| 35 |
| url |
VCID-sz6r-65q1-q3bh |
| vulnerability_id |
VCID-sz6r-65q1-q3bh |
| summary |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10; Oracle GraalVM Enterprise Edition: 21.3.17. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-22021
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sz6r-65q1-q3bh |
|
| 36 |
| url |
VCID-u81s-cs95-4yhx |
| vulnerability_id |
VCID-u81s-cs95-4yhx |
| summary |
openjdk: Better TLS connection support (Oracle CPU 2025-04) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-21587 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.687 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68825 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68788 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68798 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68776 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68718 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68696 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68748 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68767 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68789 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68775 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00575 |
| scoring_system |
epss |
| scoring_elements |
0.68746 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-21587 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-21587
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u81s-cs95-4yhx |
|
| 37 |
| url |
VCID-vbw8-4j9f-eya5 |
| vulnerability_id |
VCID-vbw8-4j9f-eya5 |
| summary |
openjdk: Glyph out-of-memory access and crash (Oracle CPU 2025-07) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-50106 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00201 |
| scoring_system |
epss |
| scoring_elements |
0.42096 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00232 |
| scoring_system |
epss |
| scoring_elements |
0.46089 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00232 |
| scoring_system |
epss |
| scoring_elements |
0.46067 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00232 |
| scoring_system |
epss |
| scoring_elements |
0.46088 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00232 |
| scoring_system |
epss |
| scoring_elements |
0.46035 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00232 |
| scoring_system |
epss |
| scoring_elements |
0.46091 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00259 |
| scoring_system |
epss |
| scoring_elements |
0.49246 |
| published_at |
2026-04-24T12:55:00Z |
|
| 7 |
| value |
0.00259 |
| scoring_system |
epss |
| scoring_elements |
0.49245 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00259 |
| scoring_system |
epss |
| scoring_elements |
0.49292 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00259 |
| scoring_system |
epss |
| scoring_elements |
0.49288 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00259 |
| scoring_system |
epss |
| scoring_elements |
0.49267 |
| published_at |
2026-04-11T12:55:00Z |
|
| 11 |
| value |
0.00259 |
| scoring_system |
epss |
| scoring_elements |
0.4924 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-50106 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-50106
|
| risk_score |
3.6 |
| exploitability |
0.5 |
| weighted_severity |
7.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vbw8-4j9f-eya5 |
|
| 38 |
| url |
VCID-vpnc-yu7r-bqb6 |
| vulnerability_id |
VCID-vpnc-yu7r-bqb6 |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21208 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16915 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16971 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16975 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.17012 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.1719 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.17241 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.17021 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.17111 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.17169 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.17144 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.17096 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.17036 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21208 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21208
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vpnc-yu7r-bqb6 |
|
| 39 |
| url |
VCID-vuhe-re6z-8kax |
| vulnerability_id |
VCID-vuhe-re6z-8kax |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-22025 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32344 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32039 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32285 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32286 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32248 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32217 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32251 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.3223 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32201 |
| published_at |
2026-04-21T12:55:00Z |
|
| 9 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32382 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32207 |
| published_at |
2026-04-07T12:55:00Z |
|
| 11 |
| value |
0.00128 |
| scoring_system |
epss |
| scoring_elements |
0.32256 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-22025 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-22025
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vuhe-re6z-8kax |
|
| 40 |
| url |
VCID-wn4r-ugaa-5ydb |
| vulnerability_id |
VCID-wn4r-ugaa-5ydb |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20918 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46929 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46942 |
| published_at |
2026-04-08T12:55:00Z |
|
| 2 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46939 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46963 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46936 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46944 |
| published_at |
2026-04-21T12:55:00Z |
|
| 6 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46999 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46995 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46923 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.4694 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46888 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-20918 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-20918
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wn4r-ugaa-5ydb |
|
| 41 |
| url |
VCID-xte1-h9nn-4bbk |
| vulnerability_id |
VCID-xte1-h9nn-4bbk |
| summary |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10; Oracle GraalVM Enterprise Edition: 21.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-22018
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xte1-h9nn-4bbk |
|
| 42 |
| url |
VCID-y8bc-k5qu-c7f5 |
| vulnerability_id |
VCID-y8bc-k5qu-c7f5 |
| summary |
openjdk: Improve compiler transformations (Oracle CPU 2025-04) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-30691 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58784 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58811 |
| published_at |
2026-04-24T12:55:00Z |
|
| 2 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58851 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58814 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58846 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58805 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58775 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58827 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.00369 |
| scoring_system |
epss |
| scoring_elements |
0.58833 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-30691 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-30691
|
| risk_score |
2.1 |
| exploitability |
0.5 |
| weighted_severity |
4.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-y8bc-k5qu-c7f5 |
|
| 43 |
| url |
VCID-z356-tw9t-q7bp |
| vulnerability_id |
VCID-z356-tw9t-q7bp |
| summary |
Multiple vulnerabilities have been discovered in OpenJDK, the worst of which could lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21210 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34394 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34685 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34671 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34631 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34732 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34758 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34636 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34679 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34708 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34711 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34672 |
| published_at |
2026-04-12T12:55:00Z |
|
| 11 |
| value |
0.00144 |
| scoring_system |
epss |
| scoring_elements |
0.34648 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21210 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21210
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-z356-tw9t-q7bp |
|
| 44 |
| url |
VCID-zdra-bzqn-4ug9 |
| vulnerability_id |
VCID-zdra-bzqn-4ug9 |
| summary |
OpenJDK: integer overflow in C1 compiler address generation (8322122) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21068 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67661 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67627 |
| published_at |
2026-04-08T12:55:00Z |
|
| 2 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.6764 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67663 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67648 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67616 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.6765 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67641 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67576 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67597 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67575 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21068 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21068
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zdra-bzqn-4ug9 |
|
| 45 |
| url |
VCID-zgpr-3zft-zqgt |
| vulnerability_id |
VCID-zgpr-3zft-zqgt |
| summary |
OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21140 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68605 |
| published_at |
2026-04-24T12:55:00Z |
|
| 1 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68569 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68556 |
| published_at |
2026-04-21T12:55:00Z |
|
| 3 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68526 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68566 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68579 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68479 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68498 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68475 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68525 |
| published_at |
2026-04-08T12:55:00Z |
|
| 10 |
| value |
0.00568 |
| scoring_system |
epss |
| scoring_elements |
0.68543 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-21140 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-21140
|
| risk_score |
2.1 |
| exploitability |
0.5 |
| weighted_severity |
4.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zgpr-3zft-zqgt |
|
| 46 |
| url |
VCID-zsun-4q6p-8fek |
| vulnerability_id |
VCID-zsun-4q6p-8fek |
| summary |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10; Oracle GraalVM Enterprise Edition: 21.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-22013
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zsun-4q6p-8fek |
|