CVE-2026-22003

CVSS 6.0 · Medium EPSS 0.01% · P2 Updated Apr 22, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-22003

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u481 and 8u481-b50; Oracle GraalVM Enterprise Edition: 21.3.17. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Java SE, Oracle GraalVM Enterprise Edition executes to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 6.0 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H).

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Oracle Java SE和Oracle GraalVM Enterprise Edition 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Oracle Java SE和Oracle GraalVM Enterprise Edition都是美国甲骨文（Oracle）公司的产品。Oracle Java SE是一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle GraalVM Enterprise Edition是一个企业级多语言运行时与编译平台。 Oracle Java SE和Oracle GraalVM Enterprise Edition存在安全漏洞，该漏洞源于Hotspot组件问题，可能导致权限低的攻击

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Oracle Corporation	Oracle Java SE	8u481	-
Oracle Corporation	Oracle GraalVM Enterprise Edition	21.3.17	-

II. Public POCs for CVE-2026-22003

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-22003

请登录查看更多情报信息。

Same Patch Batch · Oracle Corporation · 2026-04-21 · 102 CVEs total

CVE-2026-34275	9.8 CRITICAL	Oracle Advanced Inbound Telephony 安全漏洞
CVE-2026-34287	9.1 CRITICAL	Oracle Identity Manager Connector 安全漏洞
CVE-2026-34286	9.1 CRITICAL	Oracle Identity Manager Connector 安全漏洞
CVE-2026-34285	9.1 CRITICAL	Oracle Identity Manager Connector 安全漏洞
CVE-2026-34279	9.1 CRITICAL	Oracle Enterprise Manager Base Platform 安全漏洞
CVE-2026-34291	8.7 HIGH	Oracle HTTP Server 安全漏洞
CVE-2026-21997	8.5 HIGH	Oracle Life Sciences Empirica Signal 安全漏洞
CVE-2026-34309	8.1 HIGH	Oracle PeopleSoft Enterprise PeopleTools 安全漏洞
CVE-2026-35243	7.8 HIGH	Oracle Application Development Framework 安全漏洞
CVE-2026-22011	7.6 HIGH	Oracle Applications DBA 安全漏洞
CVE-2026-35245	7.5 HIGH	Oracle VM VirtualBox 安全漏洞
CVE-2026-34290	7.5 HIGH	Oracle Identity Manager Connector 安全漏洞
CVE-2026-35251	7.5 HIGH	Oracle VM VirtualBox 安全漏洞
CVE-2026-34282	7.5 HIGH	Oracle多款产品安全漏洞
CVE-2026-34320	7.5 HIGH	Oracle Financial Services Customer Screening 安全漏洞
CVE-2026-34310	7.5 HIGH	Oracle Financial Services Analytical Applications Infrastructure 安全漏洞
CVE-2026-35229	7.5 HIGH	Oracle Database Server 安全漏洞
CVE-2026-35230	7.5 HIGH	Oracle VM VirtualBox 安全漏洞
CVE-2026-35231	7.5 HIGH	Oracle Financial Services Transaction Filtering 安全漏洞
CVE-2026-22016	7.5 HIGH	Oracle多款产品安全漏洞

Showing top 20 of 102 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Oracle Java SE

Same vendor: Oracle Corporation

V. Comments for CVE-2026-22003

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-22003

I. Basic Information for CVE-2026-22003

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-22003

III. Intelligence Information for CVE-2026-22003

Same Patch Batch · Oracle Corporation · 2026-04-21 · 102 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-22003

Leave a comment