graalvm22-ce-17-polyglot vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the graalvm22-ce-17-polyglot package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H ELSA-2023-12673	<0:22.3.3-1.el8
H ELSA-2023-12675	<0:22.3.3-1.el8
H ELSA-2023-12313	<0:22.3.2-1.el8
H ELSA-2023-12312	<0:22.3.2-1.el8
H OS Command Injection	<0:22.3.1-1.el8
H CVE-2023-21835	<0:22.3.1-1.el8
H CVE-2023-21830	<0:22.3.1-1.el8
H CVE-2023-21843	<0:22.3.1-1.el8
H Use of a Broken or Risky Cryptographic Algorithm	<0:22.3.0-1.el8
H HTTP Request Smuggling	<0:22.3.0-1.el8
H HTTP Request Smuggling	<0:22.3.0-1.el8
H Uncontrolled Search Path Element	<0:22.3.0-1.el8
H CVE-2022-39399	<0:22.3.0-1.el8
H HTTP Request Smuggling	<0:22.3.0-1.el8
H Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	<0:22.3.0-1.el8
H CVE-2022-21619	<0:22.3.0-1.el8
H CVE-2022-21626	<0:22.3.0-1.el8
H CVE-2022-21624	<0:22.3.0-1.el8
H CVE-2022-21618	<0:22.3.0-1.el8
H OS Command Injection	<0:22.3.0-1.el8
H HTTP Request Smuggling	<0:22.3.0-1.el8
H CVE-2022-21628	<0:22.3.0-1.el8
H CVE-2022-21541	<0:22.2.0-1.el8
H CVE-2022-21549	<0:22.2.0-1.el8
H CVE-2022-21540	<0:22.2.0-1.el8
H Incorrect Conversion between Numeric Types	<0:22.2.0-1.el8
H Deserialization of Untrusted Data	<0:22.2.0-1.el8