Privilege Escalation
Discription

openjdk is vulnerable to privilege escalation. The vulnerability exists due to a lack of validation of authorization allowing an attacker to update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data.Read More

References

https://lists.debian.org/debian-lts-announce/2022/05/msg00017.htmlhttps://secdb.alpinelinux.org/v3.15/community.yamlhttps://secdb.alpinelinux.org/edge/community.yamlhttps://www.debian.org/security/2022/dsa-5128https://www.debian.org/security/2022/dsa-5131https://security.netapp.com/advisory/ntap-20220429-0006/https://www.oracle.com/security-alerts/cpuapr2022.html

5 Medium

CVSS2

  • Access Vector
  • Access Complexity
  • Authentication
  • Confidentiality Impact
  • Integrity Impact
  • Availability Impact
  • Network
  • Low
  • None
  • None
  • Partial
  • None

AV:N/AC:L/Au:N/C:N/I:P/A:N

5.3 Medium

CVSS3

  • Attack Vector
  • Attack Complexity
  • Privileges Required
  • User Interaction
  • Scope
  • Confidentiality Impact
  • Integrity Impact
  • Availability Impact
  • Network
  • Low
  • None
  • None
  • Unchanged
  • None
  • Low
  • None

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Back to Main
Subscribe for the latest news: