Software Detail

Software Informaton Top

Programming

Software Detail

Java (Oracle JDK)

Number Of NVD

974

CRITICAL

HIGH

411

MEDIUM

412

LOW

114

URL	https://java.com/
Explanation	Java is a programming language and computing platform that was first released by Sun Microsystems in 1995. Excerpt from [https://java.com/ja/download/faq/whatis_java.xml] Intermediate files compiled from source code can be executed on various platforms (operating systems) via the JVM (Java Virtual Machine). Since the JVM absorbs platform differences, the developer does not have to be aware of the platform. Java has played a major role in the spread of object-oriented languages. It is now used in many enterprise systems and is a required language for business. Because it compiles, it has the advantage of running faster than interpreted languages such as Python and PHP. Currently, it is managed by Oracle since Sun Microsystems was merged into Oracle. Oracle JDK (Java Development Kit): A collection of functions necessary for the development and execution of Java. JRE (Java Runtime Environment): A collection of items required to run Java. Java SE (Java Platform, Standard Edition): A collection of standard features for developing Java applications on desktops and servers. Java EE (Java Platform, Enterprise Edition): Java SE with additional enterprise features (required for web application development) Java ME (Java Platform, Micro Edition): A collection of features required for embedded crises and mobile devices in the IoT. Every six months a new Java SE is released, and every three years an LTS (Long Term Support) version is released. The current LTS is Oracle Java SE 11 and it is paid for. Starting with Java 11, the JRE is no longer distributed solely as a JRE. Java EE was donated to the Eclipse Foundation in 2017 to be open sourced, and has been developed as Jakarta EE since Java EE 9. LTS has Premier Support for 5 years after release and Extended Support for the next 3 years, for a total of 8 years of support. All versions other than LTS are entitled to Premier Support for six months after release. A free Open JDK will also be released, but support will expire every six months, increasing the burden of migration.
Tag	オープンソース商用ライセンス有り

Add Information URL

No	Type	Name	URL
1			https://www.oracle.com/java/technologies/java-se-support-roadmap.html
2			https://www.oracle.com/technetwork/jp/java/eol-135779-ja.html
3			http://jdk.java.net/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Extended for a fee	Critical	High	Medium	Low
371	Oracle JDK 18			March 1, 2022	Sept. 30, 2022		0	3	5	0
372	Oracle JDK 17（LTS）	17.0.8	July 18, 2023	Sept. 1, 2021	Sept. 30, 2026	Sept. 30, 2029	0	9	33	18
373	Oracle JDK 16			March 1, 2021	Sept. 30, 2021		0	1	4	0
374	Oracle JDK 15			Sept. 1, 2020	March 31, 2021		0	0	3	6
375	Oracle JDK 14			March 1, 2020	Sept. 30, 2020		0	5	8	9
376	Oracle JDK 13			Sept. 1, 2019	March 31, 2020		0	1	10	15
377	Oracle JDK 12			March 1, 2019	Sept. 30, 2019		0	1	7	3
378	Oracle JDK 11 (LTS)	11.0.16	July 19, 2022	Sept. 1, 2018	Sept. 30, 2023	Sept. 30, 2026	1	17	67	55
379	Oracle JDK 10			March 1, 2018	Sept. 30, 2018		0	7	10	2
380	Oracle JDK 9			Sept. 1, 2017	March 31, 2018		0	5	14	1
381	Oracle JDK 8 (LTS)			March 1, 2014	March 31, 2022	Dec. 31, 2030	1	1	2	0
382	Oracle JDK 7 (LTS)			July 1, 2011	July 31, 2019	July 31, 2022	0	2	2	0
383	Oracle JDK 19	19					0	0	5	4
384	Oracle JDK -	-					2	194	133	22
385	JDK 6	6.0			Jan. 1, 2000		0	28	12	1
386	JDK 5	5.0			Jan. 1, 2000		0	28	13	0
387	JDK 1.9	1.9.1			Jan. 1, 2000		2	28	23	1
388	JDK 1.8	1.8.0			Jan. 1, 2000		32	149	207	76
389	JDK 1.7	1.7.0			Jan. 1, 2000		28	255	279	73
390	JDK 1.6	1.6.0.300			Jan. 1, 2000		24	320	277	47
391	JDK 1.5	1.5.0.320			Jan. 1, 2000		2	250	189	30
392	JDK 1.4	1.4.2_9			Jan. 1, 2000		2	197	135	23
393	JDK 1.3	1.3.1_28			Jan. 1, 2000		2	199	133	22
394	JDK 1.2	1.2.2			Jan. 1, 2000		2	196	134	22
395	JDK 1.2	1.1.8			Jan. 1, 2000		2	195	135	22
396	JDK 1.10	1.10.0			Jan. 1, 2000		2	194	133	22

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
371	- 4.3	MEDIUM	Unspecified vulnerability in Oracle Java SE 7u80 allows remote attackers to affect integrity via unknown vectors related to Hotspot.	NVD-CWE-noinfo	CVE-2015-2596	cpe:2.3:a:oracle:jdk:1.7.0:update80	2024-11-21 11:27 2015-07-16	Show	GitHub Exploit DB Packet Storm

372	3.7 4.3	LOW Network	The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to c…	CWE-310 Cryptographic Issues	CVE-2015-4000	cpe:2.3:a:oracle:jdk:1.8.0:update_33 cpe:2.3:a:oracle:jdk:1.8.0:update45 cpe:2.3:a:oracle:jdk:1.7.0:update80 c…	2024-11-21 11:30 2015-05-21	Show	GitHub Exploit DB Packet Storm

373	- 9.3	HIGH	Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerabi…	NVD-CWE-noinfo	CVE-2015-0492	cpe:2.3:a:oracle:jdk:1.8.0:update40 cpe:2.3:a:oracle:jdk:1.7.0:update76 cpe:2.3:a:oracle:jdk:1.6.0:update91 cp…	2024-11-21 11:23 2015-04-17	Show	GitHub Exploit DB Packet Storm

374	- 10.0	HIGH	Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors relate…	NVD-CWE-noinfo	CVE-2015-0491	cpe:2.3:a:oracle:jdk:1.8.0:update40 cpe:2.3:a:oracle:jdk:1.7.0:update76 cpe:2.3:a:oracle:jdk:1.6.0:update91 cp…	2024-11-21 11:23 2015-04-17	Show	GitHub Exploit DB Packet Storm

375	- 5.0	MEDIUM	Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE.	NVD-CWE-noinfo	CVE-2015-0488	cpe:2.3:a:oracle:jdk:1.8.0:update40 cpe:2.3:a:oracle:jdk:1.7.0:update76 cpe:2.3:a:oracle:jdk:1.6.0:update91 cp…	2024-11-21 11:23 2015-04-17	Show	GitHub Exploit DB Packet Storm

376	- 5.0	MEDIUM	Unspecified vulnerability in Oracle Java SE 8u40 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.	NVD-CWE-noinfo	CVE-2015-0486	cpe:2.3:a:oracle:jdk:1.8.0:update40	2024-11-21 11:23 2015-04-17	Show	GitHub Exploit DB Packet Storm

377	- 6.8	MEDIUM	Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerab…	NVD-CWE-noinfo	CVE-2015-0484	cpe:2.3:a:oracle:jdk:1.8.0:update40 cpe:2.3:a:oracle:jdk:1.7.0:update76	2024-11-21 11:23 2015-04-17	Show	GitHub Exploit DB Packet Storm

378	- 5.8	MEDIUM	Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity and availability via unknown vectors related to Tools.	NVD-CWE-noinfo	CVE-2015-0480	cpe:2.3:a:oracle:jdk:1.8.0:update40 cpe:2.3:a:oracle:jdk:1.7.0:update76 cpe:2.3:a:oracle:jdk:1.6.0:update91 cp…	2024-11-21 11:23 2015-04-17	Show	GitHub Exploit DB Packet Storm

379	- 4.3	MEDIUM	Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect confidentiality via vectors related to JCE.	NVD-CWE-noinfo	CVE-2015-0478	cpe:2.3:a:oracle:jdk:1.8.0:update40 cpe:2.3:a:oracle:jdk:1.7.0:update76 cpe:2.3:a:oracle:jdk:1.6.0:update91 cp…	2024-11-21 11:23 2015-04-17	Show	GitHub Exploit DB Packet Storm

380	- 4.3	MEDIUM	Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity via unknown vectors related to Beans.	NVD-CWE-noinfo	CVE-2015-0477	cpe:2.3:a:oracle:jdk:1.8.0:update40 cpe:2.3:a:oracle:jdk:1.7.0:update76 cpe:2.3:a:oracle:jdk:1.6.0:update91 cp…	2024-11-21 11:23 2015-04-17	Show	GitHub Exploit DB Packet Storm