Software Detail

Software Informaton Top

Programming

Software Detail

Java (Oracle JDK)

Number Of NVD

974

CRITICAL

HIGH

411

MEDIUM

412

LOW

114

URL	https://java.com/
Explanation	Java is a programming language and computing platform that was first released by Sun Microsystems in 1995. Excerpt from [https://java.com/ja/download/faq/whatis_java.xml] Intermediate files compiled from source code can be executed on various platforms (operating systems) via the JVM (Java Virtual Machine). Since the JVM absorbs platform differences, the developer does not have to be aware of the platform. Java has played a major role in the spread of object-oriented languages. It is now used in many enterprise systems and is a required language for business. Because it compiles, it has the advantage of running faster than interpreted languages such as Python and PHP. Currently, it is managed by Oracle since Sun Microsystems was merged into Oracle. Oracle JDK (Java Development Kit): A collection of functions necessary for the development and execution of Java. JRE (Java Runtime Environment): A collection of items required to run Java. Java SE (Java Platform, Standard Edition): A collection of standard features for developing Java applications on desktops and servers. Java EE (Java Platform, Enterprise Edition): Java SE with additional enterprise features (required for web application development) Java ME (Java Platform, Micro Edition): A collection of features required for embedded crises and mobile devices in the IoT. Every six months a new Java SE is released, and every three years an LTS (Long Term Support) version is released. The current LTS is Oracle Java SE 11 and it is paid for. Starting with Java 11, the JRE is no longer distributed solely as a JRE. Java EE was donated to the Eclipse Foundation in 2017 to be open sourced, and has been developed as Jakarta EE since Java EE 9. LTS has Premier Support for 5 years after release and Extended Support for the next 3 years, for a total of 8 years of support. All versions other than LTS are entitled to Premier Support for six months after release. A free Open JDK will also be released, but support will expire every six months, increasing the burden of migration.
Tag	商用ライセンス有りオープンソース

Add Information URL

No	Type	Name	URL
1			https://www.oracle.com/java/technologies/java-se-support-roadmap.html
2			https://www.oracle.com/technetwork/jp/java/eol-135779-ja.html
3			http://jdk.java.net/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Extended for a fee	Critical	High	Medium	Low
401	Oracle JDK 18			March 1, 2022	Sept. 30, 2022		0	3	5	0
402	Oracle JDK 17（LTS）	17.0.8	July 18, 2023	Sept. 1, 2021	Sept. 30, 2026	Sept. 30, 2029	0	9	33	18
403	Oracle JDK 16			March 1, 2021	Sept. 30, 2021		0	1	4	0
404	Oracle JDK 15			Sept. 1, 2020	March 31, 2021		0	0	3	6
405	Oracle JDK 14			March 1, 2020	Sept. 30, 2020		0	5	8	9
406	Oracle JDK 13			Sept. 1, 2019	March 31, 2020		0	1	10	15
407	Oracle JDK 12			March 1, 2019	Sept. 30, 2019		0	1	7	3
408	Oracle JDK 11 (LTS)	11.0.16	July 19, 2022	Sept. 1, 2018	Sept. 30, 2023	Sept. 30, 2026	1	17	67	55
409	Oracle JDK 10			March 1, 2018	Sept. 30, 2018		0	7	10	2
410	Oracle JDK 9			Sept. 1, 2017	March 31, 2018		0	5	14	1
411	Oracle JDK 8 (LTS)			March 1, 2014	March 31, 2022	Dec. 31, 2030	1	1	2	0
412	Oracle JDK 7 (LTS)			July 1, 2011	July 31, 2019	July 31, 2022	0	2	2	0
413	Oracle JDK 19	19					0	0	5	4
414	Oracle JDK -	-					2	194	133	22
415	JDK 6	6.0			Jan. 1, 2000		0	28	12	1
416	JDK 5	5.0			Jan. 1, 2000		0	28	13	0
417	JDK 1.9	1.9.1			Jan. 1, 2000		2	28	23	1
418	JDK 1.8	1.8.0			Jan. 1, 2000		32	149	207	76
419	JDK 1.7	1.7.0			Jan. 1, 2000		28	255	279	73
420	JDK 1.6	1.6.0.300			Jan. 1, 2000		24	320	277	47
421	JDK 1.5	1.5.0.320			Jan. 1, 2000		2	250	189	30
422	JDK 1.4	1.4.2_9			Jan. 1, 2000		2	197	135	23
423	JDK 1.3	1.3.1_28			Jan. 1, 2000		2	199	133	22
424	JDK 1.2	1.2.2			Jan. 1, 2000		2	196	134	22
425	JDK 1.2	1.1.8			Jan. 1, 2000		2	195	135	22
426	JDK 1.10	1.10.0			Jan. 1, 2000		2	194	133	22

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
401	- 4.3	MEDIUM	Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.	NVD-CWE-noinfo	CVE-2014-6587	cpe:2.3:a:oracle:jdk:1.8.0:update25 cpe:2.3:a:oracle:jdk:1.7.0:update72 cpe:2.3:a:oracle:jdk:1.6.0:update85	2024-11-21 11:14 2015-01-22	Show	GitHub Exploit DB Packet Storm

402	- 2.6	LOW	Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6…	NVD-CWE-noinfo	CVE-2014-6585	cpe:2.3:a:oracle:jdk:1.8.0:update25 cpe:2.3:a:oracle:jdk:1.7.0:update72 cpe:2.3:a:oracle:jdk:1.6.0:update85 cp…	2024-11-21 11:14 2015-01-22	Show	GitHub Exploit DB Packet Storm

403	- 10.0	HIGH	Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.	NVD-CWE-noinfo	CVE-2014-6549	cpe:2.3:a:oracle:jdk:1.8.0:update25	2024-11-21 11:14 2015-01-22	Show	GitHub Exploit DB Packet Storm

404	- 9.3	HIGH	Unspecified vulnerability in Oracle Java SE 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.	NVD-CWE-noinfo	CVE-2014-6562	cpe:2.3:a:oracle:jdk:1.8.0:update20	2024-11-21 11:14 2014-10-16	Show	GitHub Exploit DB Packet Storm

405	- 2.6	LOW	Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and JRockit R28.3.3 allows remote attackers to affect integrity via unknown vector…	NVD-CWE-noinfo	CVE-2014-6558	cpe:2.3:a:oracle:jdk:1.7.0:update60 cpe:2.3:a:oracle:jdk:1.6.0:update81 cpe:2.3:a:oracle:jdk:1.5.0:update_71	2024-11-21 11:14 2014-10-16	Show	GitHub Exploit DB Packet Storm

406	- 9.3	HIGH	Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different …	NVD-CWE-noinfo	CVE-2014-6532	cpe:2.3:a:oracle:jdk:1.8.0:update20 cpe:2.3:a:oracle:jdk:1.6.0:update81	2024-11-21 11:14 2014-10-16	Show	GitHub Exploit DB Packet Storm

407	- 4.3	MEDIUM	Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Libraries.	NVD-CWE-noinfo	CVE-2014-6531	cpe:2.3:a:oracle:jdk:1.7.0:update60 cpe:2.3:a:oracle:jdk:1.6.0:update81 cpe:2.3:a:oracle:jdk:1.5.0:update_71	2024-11-21 11:14 2014-10-16	Show	GitHub Exploit DB Packet Storm

408	- 5.0	MEDIUM	Unspecified vulnerability in Oracle Java SE 7u67 and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Hotspot.	NVD-CWE-noinfo	CVE-2014-6519	cpe:2.3:a:oracle:jdk:1.7.0:update60	2024-11-21 11:14 2014-10-16	Show	GitHub Exploit DB Packet Storm

409	- 5.0	MEDIUM	Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and Jrockit R27.8.3 and R28.3.3 allows remote attackers to affect confidentiality via vectors related to JAXP.	NVD-CWE-noinfo	CVE-2014-6517	cpe:2.3:a:oracle:jdk:1.7.0:update60 cpe:2.3:a:oracle:jdk:1.6.0:update81	2024-11-21 11:14 2014-10-16	Show	GitHub Exploit DB Packet Storm

410	- 5.0	MEDIUM	Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment.	NVD-CWE-noinfo	CVE-2014-6515	cpe:2.3:a:oracle:jdk:1.6.0:update81	2024-11-21 11:14 2014-10-16	Show	GitHub Exploit DB Packet Storm