Detections
Analytics

OpenJDK 7 <= 7u281 / 8 <= 8u272 / 11.0.0 <= 11.0.9 / 13.0.0 <= 13.0.5 / 15.0.0 <= 15.0.1 Vulnerability (2021-01-19)

high Nessus Plugin ID 151209

Language:

Synopsis

OpenJDK is affected by a vulnerability.

Description

The version of OpenJDK installed on the remote host is prior to 7 <= 7u281 / 8 <= 8u272 / 11.0.0 <= 11.0.9 / 13.0.0 <= 13.0.5 / 15.0.0 <= 15.0.1. It is, therefore, affected by a vulnerability as referenced in the 2021-01-19 advisory.

Please Note: Java CVEs do not always include OpenJDK versions, but are confirmed separately by Tenable using the patch versions from the referenced OpenJDK security advisory.

 - One or more vulnerabilities was found in OpenJDK with no reported CVEs. (openjdk-2021-01-19)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to an OpenJDK version greater than 7u281 / 8u272 / 11.0.9 / 13.0.5 / 15.0.1

See Also

https://openjdk.java.net/groups/vulnerability/advisories/2021-01-19

Plugin Details

Severity: High

ID: 151209

File Name: openjdk_2021-01-19.nasl

Version: 1.3

Type: local

Agent: windows, macosx, unix

Family: Misc.

Published: 7/6/2021

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

CPE: cpe:/a:oracle:openjdk

Required KB Items: installed_sw/Java

Exploit Ease: No known exploits are available

Patch Publication Date: 1/19/2021

Vulnerability Publication Date: 1/19/2021