CVE-2024-21011

CVSS 3.1 Score 3.7 of 10 (low)

Details

Published Apr 16, 2024

Updated: Apr 26, 2024

Summary

CVE-2024-21011 is a vulnerability affecting multiple versions of Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition. This issue lies in the Hotspot component of these products, making unauthenticated attackers with network access capable of causing a partial denial of service (DOS). Successful exploitation may lead to unauthorized access, which can impact the availability of Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition. It is worth noting that this vulnerability can be leveraged through APIs and applies to Java deployments relying on the sandbox for security. According to CVSS 3.1, the base score for this issue is 3.7, focusing on availability impacts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database