Java Update

User_ZA3ED · Jul 11, 2021 5:51AM

Hi All

On one of my Windows server 2012R2, i can see the Java Version (Java 8 Update 202 (64 bit) installed from Add/Remove Programs.

When i scan this server from our vulnerability management tool i can see the below vulnerabilities.

Oracle Java SE 1.7.0_301 / 1.8.0_291 / 1.11.0_11 / 1.16.0_1 Multiple Vulnerabilities (Apr 2021 CPU)

Oracle Java SE 1.7.0_291 / 1.8.0_281 / 1.11.0_10 / 1.15.0_2 Information Disclosure (Windows Jan 2021 CPU)

Oracle Java SE 1.7.0_251 / 1.8.0_241 / 1.11.0_6 / 1.13.0_2 Multiple Vulnerabilities (Jan 2020 CPU)

Oracle Java SE 1.7.0_271 / 1.8.0_261 / 1.11.0_8 / 1.14.0_2 Multiple Vulnerabilities (Jul 2020 CPU)

Oracle Java SE 1.7.0_281 / 1.8.0_271 / 1.11.0_9 / 1.15.0_1 Multiple Vulnerabilities (Oct 2020 CPU)

if i download Java(jre-8u291-windows-x64.exe) from the below url and update it, if this fix all the vulnerabilities.

dvohra21 · Sep 26, 2021 9:52PM

Update to Java version 1.8.0_291 or later to remove the Multiple Vulnerabilities

Forum Stats