Oracle Java Virtual Machine — known CVE vulnerabilities
Every CVE whose affected-product data names Oracle Java Virtual Machine, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2025-50069 — CVSS 7.7 (high): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.27 and 21.3-21.18…
CVE-2026-35229 — CVSS 7.5 (high): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.30 and 21.3-21.21…
CVE-2025-30736 — CVSS 7.4 (high): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.26, 21.3-21.17 and…
CVE-2021-35619 — CVSS 7.1 (high): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 19c and 21c…
CVE-2025-61881 — CVSS 5.9 (medium): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.28, 21.3-21.19 and…
CVE-2024-21093 — CVSS 5.3 (medium): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.22 and 21.3-21.13…
CVE-2026-21975 — CVSS 4.5 (medium): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.29 and 21.3-21.20…
CVE-2022-39429 — CVSS 4.3 (medium): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable…
CVE-2022-39419 — CVSS 4.3 (medium): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable…
CVE-2021-2438 — CVSS 4.3 (medium): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c…
CVE-2025-21553 — CVSS 4.2 (medium): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.25, 21.3-21.16 and…
CVE-2020-14743 — CVSS 3.1 (low): Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1…