CVE-2024-21145

Source
https://cve.org/CVERecord?id=CVE-2024-21145
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-21145.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-21145
Aliases
Downstream
Related
Published
2024-07-16T22:39:58.658Z
Modified
2026-07-07T08:52:23.628757950Z
Severity
  • 4.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details
Database specific
{
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "introduced": "Oracle Java SE:8u411"
                },
                {
                    "last_affected": "Oracle Java SE:8u411"
                },
                {
                    "introduced": "Oracle Java SE:8u411-perf"
                },
                {
                    "last_affected": "Oracle Java SE:8u411-perf"
                },
                {
                    "introduced": "Oracle Java SE:11.0.23"
                },
                {
                    "last_affected": "Oracle Java SE:11.0.23"
                },
                {
                    "introduced": "Oracle Java SE:17.0.11"
                },
                {
                    "last_affected": "Oracle Java SE:17.0.11"
                },
                {
                    "introduced": "Oracle Java SE:21.0.3"
                },
                {
                    "last_affected": "Oracle Java SE:21.0.3"
                },
                {
                    "introduced": "Oracle Java SE:22.0.1"
                },
                {
                    "last_affected": "Oracle Java SE:22.0.1"
                },
                {
                    "introduced": "Oracle GraalVM for JDK:17.0.11"
                },
                {
                    "last_affected": "Oracle GraalVM for JDK:17.0.11"
                },
                {
                    "introduced": "Oracle GraalVM for JDK:21.0.3"
                },
                {
                    "last_affected": "Oracle GraalVM for JDK:21.0.3"
                },
                {
                    "introduced": "Oracle GraalVM for JDK:22.0.1"
                },
                {
                    "last_affected": "Oracle GraalVM for JDK:22.0.1"
                },
                {
                    "introduced": "Oracle GraalVM Enterprise Edition:20.3.14"
                },
                {
                    "last_affected": "Oracle GraalVM Enterprise Edition:20.3.14"
                },
                {
                    "introduced": "Oracle GraalVM Enterprise Edition:21.3.10"
                },
                {
                    "last_affected": "Oracle GraalVM Enterprise Edition:21.3.10"
                }
            ],
            "source": "AFFECTED_FIELD"
        }
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/21xxx/CVE-2024-21145.json",
    "cna_assigner": "oracle"
}
References

Affected packages

Git / github.com/graalvm/graalvm-ce-builds

Affected ranges

Type
GIT
Repo
https://github.com/graalvm/graalvm-ce-builds
Events
Database specific
{
    "extracted_events": [
        {
            "introduced": "22.0.1"
        },
        {
            "last_affected": "22.0.1"
        }
    ],
    "cpe": "cpe:2.3:a:oracle:graalvm:22.0.1:*:*:*:enterprise:*:*:*",
    "source": "CPE_STRING"
}

Affected versions

22.*
22.0.1
jdk-21.*
jdk-21.0.2
jdk-22.*
jdk-22.0.0
jdk-22.0.1
jdk-22.0.2
jdk-23.*
jdk-23.0.0
jdk-23.0.1
jdk-23.0.2
jdk-24.*
jdk-24.0.0
jdk-24.0.1
jdk-24.0.2
jdk-25.*
jdk-25.0.0
jdk-25.0.1
jdk-25.0.2

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-21145.json"