Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-44t4-tppq-ybb3
Vulnerability ID VCID-44t4-tppq-ybb3
Aliases CVE-2022-21549
Summary Multiple vulnerabilities have been discovered in OpenJDK, the worst of which can lead to remote code execution.
Status Published
Exploitability 0.5
Weighted Severity 4.8
Risk 2.4
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-1068 Inconsistency Between Implementation and Documented Design
System Score Found at
cvssv3 5.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21549.json
epss 0.00227 https://api.first.org/data/v1/epss?cve=CVE-2022-21549
epss 0.00227 https://api.first.org/data/v1/epss?cve=CVE-2022-21549
epss 0.00227 https://api.first.org/data/v1/epss?cve=CVE-2022-21549
epss 0.00227 https://api.first.org/data/v1/epss?cve=CVE-2022-21549
epss 0.00227 https://api.first.org/data/v1/epss?cve=CVE-2022-21549
epss 0.00227 https://api.first.org/data/v1/epss?cve=CVE-2022-21549
epss 0.00227 https://api.first.org/data/v1/epss?cve=CVE-2022-21549
cvssv3.1 5.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21549.json
https://api.first.org/data/v1/epss?cve=CVE-2022-21549
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21541
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21549
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34169
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2108547 https://bugzilla.redhat.com/show_bug.cgi?id=2108547
RHSA-2022:5726 https://access.redhat.com/errata/RHSA-2022:5726
RHSA-2022:5736 https://access.redhat.com/errata/RHSA-2022:5736
RHSA-2022:5757 https://access.redhat.com/errata/RHSA-2022:5757
RHSA-2022:5758 https://access.redhat.com/errata/RHSA-2022:5758
USN-5546-1 https://usn.ubuntu.com/5546-1/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21549.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.45479
EPSS Score 0.00227
Published At April 2, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:12:11.743174+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/202401-25 38.0.0