All 102 CVE vulnerabilities found in Java SE JDK and JRE, with AI-generated Chinese analysis, references, and POCs.
This page aggregates security weaknesses and associated Common Weakness Enumeration (CWE) identifiers for Oracle’s Java SE JDK and JRE products. The content covers a comprehensive range of vulnerabilities, including remote code execution, privilege escalation, denial of service, and security bypass flaws, specifically dating from the inception of the Java SE platform up to the present day. Here, users can track vendor advisories to understand the chronology and severity of reported issues, analyze the technical characteristics of specific weakness classes such as buffer overflows or insecure deserialization, and look up the complete vulnerability history for specific product versions to assess risk exposure. By centralizing this data, the resource aims to provide developers, security analysts, and system administrators with a clear view of the attack surface inherent in the Java runtime environment. The aggregation prioritizes technical accuracy and historical completeness, allowing for detailed cross-referencing between vendor patches and underlying code defects. This approach supports informed decision-making regarding patch management and version upgrades, ensuring that stakeholders can identify deprecated components or those requiring immediate attention based on documented exploit scenarios and remediation statuses. The scope remains strictly focused on the core JDK and JRE distributions, excluding third-party wrappers or unrelated modules to maintain clarity and relevance for direct impact assessment.
Vendor: Oracle Corporation
All 102 known CVE vulnerabilities affecting Java SE JDK and JRE with full Chinese analysis, references, and POCs where available.