Privilege Escalation
Discription
openjdk is vulnerable to privilege escalation. The vulnerability exists due to a lack of validation of authorization allowing an attacker to update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data.Read More
References
https://lists.debian.org/debian-lts-announce/2022/05/msg00017.htmlhttps://secdb.alpinelinux.org/v3.15/community.yamlhttps://secdb.alpinelinux.org/edge/community.yamlhttps://www.debian.org/security/2022/dsa-5128https://www.debian.org/security/2022/dsa-5131https://security.netapp.com/advisory/ntap-20220429-0006/https://www.oracle.com/security-alerts/cpuapr2022.htmlCVSS2
- Access Vector
- Access Complexity
- Authentication
- Confidentiality Impact
- Integrity Impact
- Availability Impact
- Network
- Low
- None
- None
- Partial
- None
AV:N/AC:L/Au:N/C:N/I:P/A:N
CVSS3
- Attack Vector
- Attack Complexity
- Privileges Required
- User Interaction
- Scope
- Confidentiality Impact
- Integrity Impact
- Availability Impact
- Network
- Low
- None
- None
- Unchanged
- None
- Low
- None
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Back to Main