Showing 1 - 13 of 13

CVE-2023-21830

Status Candidate

Overview

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf; Oracle GraalVM Enterprise Edition: 20.3.8 and 21.3.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).

Related Files

Gentoo Linux Security Advisory 202401-25: Posted Jan 17, 2024; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202401-25 - Multiple vulnerabilities have been discovered in OpenJDK, the worst of which can lead to remote code execution. Versions greater than or equal to 11.0.19_p7:11 are affected.; tags | advisory, remote, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2022-21540, CVE-2022-21541, CVE-2022-21549, CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-34169, CVE-2022-39399, CVE-2022-42920, CVE-2023-21830, CVE-2023-21835, CVE-2023-21843; SHA-256 | 0a4fe242d77ea01ee2a725ae008fbefb532aeaf7181a2f1427c642180897d42f; Download | Favorite | View

Red Hat Security Advisory 2023-3136-01: Posted May 17, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-3136-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR8. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2022-21426, CVE-2023-21830, CVE-2023-21843; SHA-256 | 4eb11ec5834851bce7c15447d41a1d10a3df58b8acfeab8ea64bba60e623cd8d; Download | Favorite | View

Ubuntu Security Notice USN-5898-1: Posted Feb 28, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5898-1 - It was discovered that the Serialization component of OpenJDK did not properly handle the deserialization of some CORBA objects. An attacker could possibly use this to bypass Java sandbox restrictions. Markus Loewe discovered that the Java Sound subsystem in OpenJDK did not properly validate the origin of a Soundbank. An attacker could use this to specially craft an untrusted Java application or applet that could load a Soundbank from an attacker controlled remote URL.; tags | advisory, java, remote; systems | linux, ubuntu; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | 72451c51f27af857632603e483d9bfa9c145b4a50405558130ae42f60da00e32; Download | Favorite | View

Red Hat Security Advisory 2023-0208-01: Posted Jan 27, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0208-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | 413b15e781f2019731ffc4c04c713b38fd5081577917e3783c56d13ec82306ae; Download | Favorite | View

Red Hat Security Advisory 2023-0210-01: Posted Jan 27, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0210-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | 0c6c9955b069cf18ef23e7e1f3abf9e535f658fd3f2dcc5349892919f8567e1f; Download | Favorite | View

Red Hat Security Advisory 2023-0203-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0203-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | 55d9172089df187496a7c2f02151a98f344c0927652ccc4bf0e085cfac95e94b; Download | Favorite | View

Red Hat Security Advisory 2023-0387-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0387-01 - The OpenJDK 8 packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. This release of the Red Hat build of OpenJDK 8 for portable Linux serves as a replacement for Red Hat build of OpenJDK 8 and includes security and bug fixes as well as enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | bf98929eb9dc5c5ca5bc0e416a9c293d3e50302c21bd729dbad8b5cf58d08dd2; Download | Favorite | View

Red Hat Security Advisory 2023-0354-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0354-01 - The OpenJDK 8 packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. This release of the Red Hat build of OpenJDK 8 for Windows serves as a replacement for the Red Hat build of OpenJDK 8 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat, windows; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | bd7fde7e9fb387f3f5463e02c82d5237191b01e8597247e1b9e60d2c58ef2761; Download | Favorite | View

Red Hat Security Advisory 2023-0206-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0206-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | d5607c08b53aab84a72e57d70f3adcd2721aed3c36e23b1af912bc66bcd0a153; Download | Favorite | View

Red Hat Security Advisory 2023-0207-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0207-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | fcd509a48db4f82d470f8adb6700bf2ddeee4479861dc475dab8157aa6441ac8; Download | Favorite | View

Red Hat Security Advisory 2023-0205-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0205-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | e8d8df8db279921c83f62bcb8da4dd82284f689382e5abb01f117645e0f1dba0; Download | Favorite | View

Red Hat Security Advisory 2023-0209-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0209-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | e2aa56f13a51e9b11019625543b3c1408331a04ff18fd59dfc28c48f577768c1; Download | Favorite | View

Red Hat Security Advisory 2023-0204-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0204-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include a deserialization vulnerability.; tags | advisory, java; systems | linux, redhat; advisories | CVE-2023-21830, CVE-2023-21843; SHA-256 | 7920bb643374e2f38080c490914d1e567bfddcae5b0b6e9cadbe23e1ca4f9ad8; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 223 files
indoushka 170 files
Jay Turla 150 files
Ubuntu 79 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,114)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,123)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (389)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,177)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,794)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,845)
UNIX (9,454)
UnixWare (188)
Windows (6,771)
Other

CVE-2023-21830

Overview

Related Files

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems