Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community

Type apk

Namespace alpine

Name openjdk8

Version 8.422.05-r0

Qualifiers

arch	armhf
distroversion	v3.20
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 8.432.06-r0

Latest_non_vulnerable_version 8.432.06-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-d21x-rz6c-2qg4

vulnerability_id VCID-d21x-rz6c-2qg4

summary OpenJDK: Out-of-bounds access in 2D image handling (8324559)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21145.json

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21145.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-21145

reference_id

reference_type

scores

value	0.0045
scoring_system	epss
scoring_elements	0.63994
published_at	2026-06-07T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.63997
published_at	2026-06-05T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.64004
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-21145

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2297976
reference_id	2297976
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2297976

reference_url

https://www.oracle.com/security-alerts/cpujul2024.html

reference_id

cpujul2024.html

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T13:58:12Z/

url

https://www.oracle.com/security-alerts/cpujul2024.html

reference_url

https://security.netapp.com/advisory/ntap-20240719-0008/

reference_id

ntap-20240719-0008

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T13:58:12Z/

url

https://security.netapp.com/advisory/ntap-20240719-0008/

reference_url	https://access.redhat.com/errata/RHSA-2024:4560
reference_id	RHSA-2024:4560
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4560

reference_url	https://access.redhat.com/errata/RHSA-2024:4561
reference_id	RHSA-2024:4561
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4561

reference_url	https://access.redhat.com/errata/RHSA-2024:4562
reference_id	RHSA-2024:4562
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4562

reference_url	https://access.redhat.com/errata/RHSA-2024:4563
reference_id	RHSA-2024:4563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4563

reference_url	https://access.redhat.com/errata/RHSA-2024:4564
reference_id	RHSA-2024:4564
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4564

reference_url	https://access.redhat.com/errata/RHSA-2024:4565
reference_id	RHSA-2024:4565
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4565

reference_url	https://access.redhat.com/errata/RHSA-2024:4566
reference_id	RHSA-2024:4566
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4566

reference_url	https://access.redhat.com/errata/RHSA-2024:4567
reference_id	RHSA-2024:4567
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4567

reference_url	https://access.redhat.com/errata/RHSA-2024:4568
reference_id	RHSA-2024:4568
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4568

reference_url	https://access.redhat.com/errata/RHSA-2024:4569
reference_id	RHSA-2024:4569
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4569

reference_url	https://access.redhat.com/errata/RHSA-2024:4570
reference_id	RHSA-2024:4570
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4570

reference_url	https://access.redhat.com/errata/RHSA-2024:4571
reference_id	RHSA-2024:4571
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4571

reference_url	https://access.redhat.com/errata/RHSA-2024:4572
reference_id	RHSA-2024:4572
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4572

reference_url	https://access.redhat.com/errata/RHSA-2024:4573
reference_id	RHSA-2024:4573
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4573

reference_url	https://usn.ubuntu.com/6929-1/
reference_id	USN-6929-1
reference_type
scores
url	https://usn.ubuntu.com/6929-1/

reference_url	https://usn.ubuntu.com/6930-1/
reference_id	USN-6930-1
reference_type
scores
url	https://usn.ubuntu.com/6930-1/

reference_url	https://usn.ubuntu.com/6931-1/
reference_id	USN-6931-1
reference_type
scores
url	https://usn.ubuntu.com/6931-1/

reference_url	https://usn.ubuntu.com/6932-1/
reference_id	USN-6932-1
reference_type
scores
url	https://usn.ubuntu.com/6932-1/

reference_url	https://usn.ubuntu.com/7096-1/
reference_id	USN-7096-1
reference_type
scores
url	https://usn.ubuntu.com/7096-1/

reference_url	https://usn.ubuntu.com/7097-1/
reference_id	USN-7097-1
reference_type
scores
url	https://usn.ubuntu.com/7097-1/

reference_url	https://usn.ubuntu.com/7098-1/
reference_id	USN-7098-1
reference_type
scores
url	https://usn.ubuntu.com/7098-1/

fixed_packages

url	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk8@8.422.05-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2024-21145

risk_score 2.1

exploitability 0.5

weighted_severity 4.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d21x-rz6c-2qg4

url VCID-dzk4-e2jw-wuf2

vulnerability_id VCID-dzk4-e2jw-wuf2

summary OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21094.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21094.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-21094

reference_id

reference_type

scores

value	0.00417
scoring_system	epss
scoring_elements	0.62124
published_at	2026-06-07T12:55:00Z

value	0.00417
scoring_system	epss
scoring_elements	0.62129
published_at	2026-06-05T12:55:00Z

value	0.00417
scoring_system	epss
scoring_elements	0.62136
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-21094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21011
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21011

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21012
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21068
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21068

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21094

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069678
reference_id	1069678
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069678

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2275005
reference_id	2275005
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2275005

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::
reference_id	cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::
reference_id	cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:17.0.10:::::::*
reference_id	cpe:2.3:a:oracle:graalvm_for_jdk:17.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:17.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:21.0.2:::::::*
reference_id	cpe:2.3:a:oracle:graalvm_for_jdk:21.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:21.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:22:::::::*
reference_id	cpe:2.3:a:oracle:graalvm_for_jdk:22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:11.0.22:::::::*
reference_id	cpe:2.3:a:oracle:java_se:11.0.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:11.0.22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:17.0.10:::::::*
reference_id	cpe:2.3:a:oracle:java_se:17.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:17.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:21.0.2:::::::*
reference_id	cpe:2.3:a:oracle:java_se:21.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:21.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:22:::::::*
reference_id	cpe:2.3:a:oracle:java_se:22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401:::::::*
reference_id	cpe:2.3:a:oracle:java_se:8u401:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::
reference_id	cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::

reference_url

https://www.oracle.com/security-alerts/cpuapr2024.html

reference_id

cpuapr2024.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T13:58:54Z/

url

https://www.oracle.com/security-alerts/cpuapr2024.html

reference_url

https://lists.debian.org/debian-lts-announce/2024/04/msg00014.html

reference_id

msg00014.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T13:58:54Z/

url

https://lists.debian.org/debian-lts-announce/2024/04/msg00014.html

reference_url

https://security.netapp.com/advisory/ntap-20240426-0004/

reference_id

ntap-20240426-0004

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T13:58:54Z/

url

https://security.netapp.com/advisory/ntap-20240426-0004/

reference_url	https://access.redhat.com/errata/RHSA-2024:0248
reference_id	RHSA-2024:0248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0248

reference_url	https://access.redhat.com/errata/RHSA-2024:0249
reference_id	RHSA-2024:0249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0249

reference_url	https://access.redhat.com/errata/RHSA-2024:1815
reference_id	RHSA-2024:1815
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1815

reference_url	https://access.redhat.com/errata/RHSA-2024:1816
reference_id	RHSA-2024:1816
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1816

reference_url	https://access.redhat.com/errata/RHSA-2024:1817
reference_id	RHSA-2024:1817
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1817

reference_url	https://access.redhat.com/errata/RHSA-2024:1818
reference_id	RHSA-2024:1818
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1818

reference_url	https://access.redhat.com/errata/RHSA-2024:1819
reference_id	RHSA-2024:1819
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1819

reference_url	https://access.redhat.com/errata/RHSA-2024:1820
reference_id	RHSA-2024:1820
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1820

reference_url	https://access.redhat.com/errata/RHSA-2024:1821
reference_id	RHSA-2024:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1821

reference_url	https://access.redhat.com/errata/RHSA-2024:1822
reference_id	RHSA-2024:1822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1822

reference_url	https://access.redhat.com/errata/RHSA-2024:1823
reference_id	RHSA-2024:1823
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1823

reference_url	https://access.redhat.com/errata/RHSA-2024:1824
reference_id	RHSA-2024:1824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1824

reference_url	https://access.redhat.com/errata/RHSA-2024:1825
reference_id	RHSA-2024:1825
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1825

reference_url	https://access.redhat.com/errata/RHSA-2024:1826
reference_id	RHSA-2024:1826
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1826

reference_url	https://access.redhat.com/errata/RHSA-2024:1828
reference_id	RHSA-2024:1828
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1828

reference_url	https://usn.ubuntu.com/6810-1/
reference_id	USN-6810-1
reference_type
scores
url	https://usn.ubuntu.com/6810-1/

reference_url	https://usn.ubuntu.com/6811-1/
reference_id	USN-6811-1
reference_type
scores
url	https://usn.ubuntu.com/6811-1/

reference_url	https://usn.ubuntu.com/6812-1/
reference_id	USN-6812-1
reference_type
scores
url	https://usn.ubuntu.com/6812-1/

reference_url	https://usn.ubuntu.com/6813-1/
reference_id	USN-6813-1
reference_type
scores
url	https://usn.ubuntu.com/6813-1/

reference_url	https://usn.ubuntu.com/7096-1/
reference_id	USN-7096-1
reference_type
scores
url	https://usn.ubuntu.com/7096-1/

fixed_packages

url	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk8@8.422.05-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2024-21094

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dzk4-e2jw-wuf2

url VCID-p72p-vgwt-sybq

vulnerability_id VCID-p72p-vgwt-sybq

summary OpenJDK: long Exception message leading to crash (8319851)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21011.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21011.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-21011

reference_id

reference_type

scores

value	0.00339
scoring_system	epss
scoring_elements	0.56968
published_at	2026-06-07T12:55:00Z

value	0.00339
scoring_system	epss
scoring_elements	0.56973
published_at	2026-06-05T12:55:00Z

value	0.00339
scoring_system	epss
scoring_elements	0.56981
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-21011

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21011
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21011

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21012
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21068
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21068

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21094

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069678
reference_id	1069678
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069678

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2274977
reference_id	2274977
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2274977

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::
reference_id	cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::
reference_id	cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:17.0.10:::::::*
reference_id	cpe:2.3:a:oracle:graalvm_for_jdk:17.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:17.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:21.0.2:::::::*
reference_id	cpe:2.3:a:oracle:graalvm_for_jdk:21.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:21.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:22:::::::*
reference_id	cpe:2.3:a:oracle:graalvm_for_jdk:22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm_for_jdk:22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:11.0.22:::::::*
reference_id	cpe:2.3:a:oracle:java_se:11.0.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:11.0.22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:17.0.10:::::::*
reference_id	cpe:2.3:a:oracle:java_se:17.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:17.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:21.0.2:::::::*
reference_id	cpe:2.3:a:oracle:java_se:21.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:21.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:22:::::::*
reference_id	cpe:2.3:a:oracle:java_se:22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401:::::::*
reference_id	cpe:2.3:a:oracle:java_se:8u401:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::
reference_id	cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::

reference_url

https://www.oracle.com/security-alerts/cpuapr2024.html

reference_id

cpuapr2024.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-26T15:16:14Z/

url

https://www.oracle.com/security-alerts/cpuapr2024.html

reference_url

https://lists.debian.org/debian-lts-announce/2024/04/msg00014.html

reference_id

msg00014.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-26T15:16:14Z/

url

https://lists.debian.org/debian-lts-announce/2024/04/msg00014.html

reference_url

https://security.netapp.com/advisory/ntap-20240426-0004/

reference_id

ntap-20240426-0004

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-26T15:16:14Z/

url

https://security.netapp.com/advisory/ntap-20240426-0004/

reference_url	https://access.redhat.com/errata/RHSA-2024:1815
reference_id	RHSA-2024:1815
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1815

reference_url	https://access.redhat.com/errata/RHSA-2024:1816
reference_id	RHSA-2024:1816
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1816

reference_url	https://access.redhat.com/errata/RHSA-2024:1817
reference_id	RHSA-2024:1817
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1817

reference_url	https://access.redhat.com/errata/RHSA-2024:1818
reference_id	RHSA-2024:1818
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1818

reference_url	https://access.redhat.com/errata/RHSA-2024:1819
reference_id	RHSA-2024:1819
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1819

reference_url	https://access.redhat.com/errata/RHSA-2024:1820
reference_id	RHSA-2024:1820
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1820

reference_url	https://access.redhat.com/errata/RHSA-2024:1821
reference_id	RHSA-2024:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1821

reference_url	https://access.redhat.com/errata/RHSA-2024:1822
reference_id	RHSA-2024:1822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1822

reference_url	https://access.redhat.com/errata/RHSA-2024:1823
reference_id	RHSA-2024:1823
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1823

reference_url	https://access.redhat.com/errata/RHSA-2024:1824
reference_id	RHSA-2024:1824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1824

reference_url	https://access.redhat.com/errata/RHSA-2024:1825
reference_id	RHSA-2024:1825
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1825

reference_url	https://access.redhat.com/errata/RHSA-2024:1826
reference_id	RHSA-2024:1826
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1826

reference_url	https://access.redhat.com/errata/RHSA-2024:1827
reference_id	RHSA-2024:1827
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1827

reference_url	https://access.redhat.com/errata/RHSA-2024:1828
reference_id	RHSA-2024:1828
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1828

reference_url	https://usn.ubuntu.com/6810-1/
reference_id	USN-6810-1
reference_type
scores
url	https://usn.ubuntu.com/6810-1/

reference_url	https://usn.ubuntu.com/6811-1/
reference_id	USN-6811-1
reference_type
scores
url	https://usn.ubuntu.com/6811-1/

reference_url	https://usn.ubuntu.com/6812-1/
reference_id	USN-6812-1
reference_type
scores
url	https://usn.ubuntu.com/6812-1/

reference_url	https://usn.ubuntu.com/6813-1/
reference_id	USN-6813-1
reference_type
scores
url	https://usn.ubuntu.com/6813-1/

reference_url	https://usn.ubuntu.com/7096-1/
reference_id	USN-7096-1
reference_type
scores
url	https://usn.ubuntu.com/7096-1/

fixed_packages

url	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk8@8.422.05-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2024-21011

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p72p-vgwt-sybq

url VCID-upqa-2yw5-xfd3

vulnerability_id VCID-upqa-2yw5-xfd3

summary OpenJDK: potential UTF8 size overflow (8314794)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21131.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21131.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-21131

reference_id

reference_type

scores

value	0.00442
scoring_system	epss
scoring_elements	0.63647
published_at	2026-06-07T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63648
published_at	2026-06-05T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63656
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-21131

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2297961
reference_id	2297961
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2297961

reference_url

https://www.oracle.com/security-alerts/cpujul2024.html

reference_id

cpujul2024.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T13:34:16Z/

url

https://www.oracle.com/security-alerts/cpujul2024.html

reference_url

https://security.netapp.com/advisory/ntap-20240719-0008/

reference_id

ntap-20240719-0008

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T13:34:16Z/

url

https://security.netapp.com/advisory/ntap-20240719-0008/

reference_url	https://access.redhat.com/errata/RHSA-2024:4560
reference_id	RHSA-2024:4560
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4560

reference_url	https://access.redhat.com/errata/RHSA-2024:4561
reference_id	RHSA-2024:4561
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4561

reference_url	https://access.redhat.com/errata/RHSA-2024:4562
reference_id	RHSA-2024:4562
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4562

reference_url	https://access.redhat.com/errata/RHSA-2024:4563
reference_id	RHSA-2024:4563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4563

reference_url	https://access.redhat.com/errata/RHSA-2024:4564
reference_id	RHSA-2024:4564
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4564

reference_url	https://access.redhat.com/errata/RHSA-2024:4565
reference_id	RHSA-2024:4565
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4565

reference_url	https://access.redhat.com/errata/RHSA-2024:4566
reference_id	RHSA-2024:4566
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4566

reference_url	https://access.redhat.com/errata/RHSA-2024:4567
reference_id	RHSA-2024:4567
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4567

reference_url	https://access.redhat.com/errata/RHSA-2024:4568
reference_id	RHSA-2024:4568
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4568

reference_url	https://access.redhat.com/errata/RHSA-2024:4569
reference_id	RHSA-2024:4569
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4569

reference_url	https://access.redhat.com/errata/RHSA-2024:4570
reference_id	RHSA-2024:4570
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4570

reference_url	https://access.redhat.com/errata/RHSA-2024:4571
reference_id	RHSA-2024:4571
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4571

reference_url	https://access.redhat.com/errata/RHSA-2024:4572
reference_id	RHSA-2024:4572
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4572

reference_url	https://access.redhat.com/errata/RHSA-2024:4573
reference_id	RHSA-2024:4573
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4573

reference_url	https://usn.ubuntu.com/6929-1/
reference_id	USN-6929-1
reference_type
scores
url	https://usn.ubuntu.com/6929-1/

reference_url	https://usn.ubuntu.com/6930-1/
reference_id	USN-6930-1
reference_type
scores
url	https://usn.ubuntu.com/6930-1/

reference_url	https://usn.ubuntu.com/6931-1/
reference_id	USN-6931-1
reference_type
scores
url	https://usn.ubuntu.com/6931-1/

reference_url	https://usn.ubuntu.com/6932-1/
reference_id	USN-6932-1
reference_type
scores
url	https://usn.ubuntu.com/6932-1/

reference_url	https://usn.ubuntu.com/7096-1/
reference_id	USN-7096-1
reference_type
scores
url	https://usn.ubuntu.com/7096-1/

reference_url	https://usn.ubuntu.com/7097-1/
reference_id	USN-7097-1
reference_type
scores
url	https://usn.ubuntu.com/7097-1/

reference_url	https://usn.ubuntu.com/7098-1/
reference_id	USN-7098-1
reference_type
scores
url	https://usn.ubuntu.com/7098-1/

fixed_packages

url	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk8@8.422.05-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2024-21131

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-upqa-2yw5-xfd3

url VCID-vbht-va8c-r3a3

vulnerability_id VCID-vbht-va8c-r3a3

summary OpenJDK: Excessive symbol length can lead to infinite loop (8319859)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21138.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21138.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-21138

reference_id

reference_type

scores

value	0.00333
scoring_system	epss
scoring_elements	0.56451
published_at	2026-06-07T12:55:00Z

value	0.00333
scoring_system	epss
scoring_elements	0.56457
published_at	2026-06-05T12:55:00Z

value	0.00333
scoring_system	epss
scoring_elements	0.56463
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-21138

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2297962
reference_id	2297962
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2297962

reference_url

https://www.oracle.com/security-alerts/cpujul2024.html

reference_id

cpujul2024.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T13:32:40Z/

url

https://www.oracle.com/security-alerts/cpujul2024.html

reference_url

https://security.netapp.com/advisory/ntap-20240719-0008/

reference_id

ntap-20240719-0008

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T13:32:40Z/

url

https://security.netapp.com/advisory/ntap-20240719-0008/

reference_url	https://access.redhat.com/errata/RHSA-2024:4560
reference_id	RHSA-2024:4560
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4560

reference_url	https://access.redhat.com/errata/RHSA-2024:4561
reference_id	RHSA-2024:4561
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4561

reference_url	https://access.redhat.com/errata/RHSA-2024:4562
reference_id	RHSA-2024:4562
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4562

reference_url	https://access.redhat.com/errata/RHSA-2024:4563
reference_id	RHSA-2024:4563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4563

reference_url	https://access.redhat.com/errata/RHSA-2024:4564
reference_id	RHSA-2024:4564
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4564

reference_url	https://access.redhat.com/errata/RHSA-2024:4565
reference_id	RHSA-2024:4565
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4565

reference_url	https://access.redhat.com/errata/RHSA-2024:4566
reference_id	RHSA-2024:4566
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4566

reference_url	https://access.redhat.com/errata/RHSA-2024:4567
reference_id	RHSA-2024:4567
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4567

reference_url	https://access.redhat.com/errata/RHSA-2024:4568
reference_id	RHSA-2024:4568
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4568

reference_url	https://access.redhat.com/errata/RHSA-2024:4569
reference_id	RHSA-2024:4569
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4569

reference_url	https://access.redhat.com/errata/RHSA-2024:4570
reference_id	RHSA-2024:4570
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4570

reference_url	https://access.redhat.com/errata/RHSA-2024:4571
reference_id	RHSA-2024:4571
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4571

reference_url	https://access.redhat.com/errata/RHSA-2024:4572
reference_id	RHSA-2024:4572
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4572

reference_url	https://access.redhat.com/errata/RHSA-2024:4573
reference_id	RHSA-2024:4573
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4573

reference_url	https://usn.ubuntu.com/6929-1/
reference_id	USN-6929-1
reference_type
scores
url	https://usn.ubuntu.com/6929-1/

reference_url	https://usn.ubuntu.com/6930-1/
reference_id	USN-6930-1
reference_type
scores
url	https://usn.ubuntu.com/6930-1/

reference_url	https://usn.ubuntu.com/6931-1/
reference_id	USN-6931-1
reference_type
scores
url	https://usn.ubuntu.com/6931-1/

reference_url	https://usn.ubuntu.com/6932-1/
reference_id	USN-6932-1
reference_type
scores
url	https://usn.ubuntu.com/6932-1/

reference_url	https://usn.ubuntu.com/7096-1/
reference_id	USN-7096-1
reference_type
scores
url	https://usn.ubuntu.com/7096-1/

reference_url	https://usn.ubuntu.com/7097-1/
reference_id	USN-7097-1
reference_type
scores
url	https://usn.ubuntu.com/7097-1/

reference_url	https://usn.ubuntu.com/7098-1/
reference_id	USN-7098-1
reference_type
scores
url	https://usn.ubuntu.com/7098-1/

fixed_packages

url	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk8@8.422.05-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2024-21138

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vbht-va8c-r3a3

url VCID-wcf4-rft1-wbcu

vulnerability_id VCID-wcf4-rft1-wbcu

summary OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21140.json

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21140.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-21140

reference_id

reference_type

scores

value	0.00568
scoring_system	epss
scoring_elements	0.68944
published_at	2026-06-07T12:55:00Z

value	0.00568
scoring_system	epss
scoring_elements	0.68943
published_at	2026-06-05T12:55:00Z

value	0.00568
scoring_system	epss
scoring_elements	0.68952
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-21140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2297963
reference_id	2297963
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2297963

reference_url

https://www.oracle.com/security-alerts/cpujul2024.html

reference_id

cpujul2024.html

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-17T13:27:50Z/

url

https://www.oracle.com/security-alerts/cpujul2024.html

reference_url

https://security.netapp.com/advisory/ntap-20240719-0008/

reference_id

ntap-20240719-0008

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-17T13:27:50Z/

url

https://security.netapp.com/advisory/ntap-20240719-0008/

reference_url	https://access.redhat.com/errata/RHSA-2024:4560
reference_id	RHSA-2024:4560
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4560

reference_url	https://access.redhat.com/errata/RHSA-2024:4561
reference_id	RHSA-2024:4561
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4561

reference_url	https://access.redhat.com/errata/RHSA-2024:4562
reference_id	RHSA-2024:4562
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4562

reference_url	https://access.redhat.com/errata/RHSA-2024:4563
reference_id	RHSA-2024:4563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4563

reference_url	https://access.redhat.com/errata/RHSA-2024:4564
reference_id	RHSA-2024:4564
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4564

reference_url	https://access.redhat.com/errata/RHSA-2024:4565
reference_id	RHSA-2024:4565
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4565

reference_url	https://access.redhat.com/errata/RHSA-2024:4566
reference_id	RHSA-2024:4566
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4566

reference_url	https://access.redhat.com/errata/RHSA-2024:4567
reference_id	RHSA-2024:4567
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4567

reference_url	https://access.redhat.com/errata/RHSA-2024:4568
reference_id	RHSA-2024:4568
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4568

reference_url	https://access.redhat.com/errata/RHSA-2024:4569
reference_id	RHSA-2024:4569
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4569

reference_url	https://access.redhat.com/errata/RHSA-2024:4570
reference_id	RHSA-2024:4570
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4570

reference_url	https://access.redhat.com/errata/RHSA-2024:4571
reference_id	RHSA-2024:4571
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4571

reference_url	https://access.redhat.com/errata/RHSA-2024:4572
reference_id	RHSA-2024:4572
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4572

reference_url	https://access.redhat.com/errata/RHSA-2024:4573
reference_id	RHSA-2024:4573
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4573

reference_url	https://usn.ubuntu.com/6929-1/
reference_id	USN-6929-1
reference_type
scores
url	https://usn.ubuntu.com/6929-1/

reference_url	https://usn.ubuntu.com/6930-1/
reference_id	USN-6930-1
reference_type
scores
url	https://usn.ubuntu.com/6930-1/

reference_url	https://usn.ubuntu.com/6931-1/
reference_id	USN-6931-1
reference_type
scores
url	https://usn.ubuntu.com/6931-1/

reference_url	https://usn.ubuntu.com/6932-1/
reference_id	USN-6932-1
reference_type
scores
url	https://usn.ubuntu.com/6932-1/

reference_url	https://usn.ubuntu.com/7096-1/
reference_id	USN-7096-1
reference_type
scores
url	https://usn.ubuntu.com/7096-1/

reference_url	https://usn.ubuntu.com/7097-1/
reference_id	USN-7097-1
reference_type
scores
url	https://usn.ubuntu.com/7097-1/

reference_url	https://usn.ubuntu.com/7098-1/
reference_id	USN-7098-1
reference_type
scores
url	https://usn.ubuntu.com/7098-1/

fixed_packages

url	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk8@8.422.05-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2024-21140

risk_score 2.1

exploitability 0.5

weighted_severity 4.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wcf4-rft1-wbcu

url VCID-xju8-ssxv-vfbs

vulnerability_id VCID-xju8-ssxv-vfbs

summary OpenJDK: Pack200 excessive memory allocation (8322114)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21085.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21085.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-21085

reference_id

reference_type

scores

value	0.001
scoring_system	epss
scoring_elements	0.27236
published_at	2026-06-07T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27327
published_at	2026-06-05T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27276
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-21085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21011
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21011

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21012
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21068
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21068

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21094

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069678
reference_id	1069678
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069678

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2275001
reference_id	2275001
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2275001

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::
reference_id	cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.3.13::::enterprise:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::
reference_id	cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:21.3.9::::enterprise:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:11.0.22:::::::*
reference_id	cpe:2.3:a:oracle:java_se:11.0.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:11.0.22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401:::::::*
reference_id	cpe:2.3:a:oracle:java_se:8u401:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::
reference_id	cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:java_se:8u401::::enterprise_performance:::

reference_url

https://www.oracle.com/security-alerts/cpuapr2024.html

reference_id

cpuapr2024.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-13T20:35:49Z/

url

https://www.oracle.com/security-alerts/cpuapr2024.html

reference_url

https://lists.debian.org/debian-lts-announce/2024/04/msg00014.html

reference_id

msg00014.html

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-13T20:35:49Z/

url

https://lists.debian.org/debian-lts-announce/2024/04/msg00014.html

reference_url

https://security.netapp.com/advisory/ntap-20240426-0004/

reference_id

ntap-20240426-0004

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-13T20:35:49Z/

url

https://security.netapp.com/advisory/ntap-20240426-0004/

reference_url	https://access.redhat.com/errata/RHSA-2024:1815
reference_id	RHSA-2024:1815
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1815

reference_url	https://access.redhat.com/errata/RHSA-2024:1816
reference_id	RHSA-2024:1816
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1816

reference_url	https://access.redhat.com/errata/RHSA-2024:1817
reference_id	RHSA-2024:1817
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1817

reference_url	https://access.redhat.com/errata/RHSA-2024:1818
reference_id	RHSA-2024:1818
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1818

reference_url	https://access.redhat.com/errata/RHSA-2024:1819
reference_id	RHSA-2024:1819
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1819

reference_url	https://access.redhat.com/errata/RHSA-2024:1820
reference_id	RHSA-2024:1820
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1820

reference_url	https://access.redhat.com/errata/RHSA-2024:1821
reference_id	RHSA-2024:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1821

reference_url	https://access.redhat.com/errata/RHSA-2024:1822
reference_id	RHSA-2024:1822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1822

reference_url	https://usn.ubuntu.com/6810-1/
reference_id	USN-6810-1
reference_type
scores
url	https://usn.ubuntu.com/6810-1/

reference_url	https://usn.ubuntu.com/6811-1/
reference_id	USN-6811-1
reference_type
scores
url	https://usn.ubuntu.com/6811-1/

reference_url	https://usn.ubuntu.com/7096-1/
reference_id	USN-7096-1
reference_type
scores
url	https://usn.ubuntu.com/7096-1/

fixed_packages

url	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/openjdk8@8.422.05-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk8@8.422.05-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2024-21085

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xju8-ssxv-vfbs

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk8@8.422.05-r0%3Farch=armhf&distroversion=v3.20&reponame=community

Package Instance