Microsoft Java Software Development Kit
By the Year
In 2024 there have been 0 vulnerabilities in Microsoft Java Software Development Kit . Java Software Development Kit did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 2 | 8.65 |
| 2018 | 2 | 5.60 |
It may take a day or so for new Java Software Development Kit vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Java Software Development Kit Security Vulnerabilities
An Elevation of Privilege vulnerability exists in the way Azure IoT Java SDK generates symmetric keys for encryption
CVE-2019-0729
9.8 - Critical
- March 05, 2019
An Elevation of Privilege vulnerability exists in the way Azure IoT Java SDK generates symmetric keys for encryption, allowing an attacker to predict the randomness of the key, aka 'Azure IoT Java SDK Elevation of Privilege Vulnerability'.
Insufficient Entropy in PRNG
An information disclosure vulnerability exists in the way Azure IoT Java SDK logs sensitive information
CVE-2019-0741
7.5 - High
- March 05, 2019
An information disclosure vulnerability exists in the way Azure IoT Java SDK logs sensitive information, aka 'Azure IoT Java SDK Information Disclosure Vulnerability'.
Insertion of Sensitive Information into Log File
A spoofing vulnerability exists for the Azure IoT Device Provisioning for the C SDK library using the HTTP protocol on Windows platform
CVE-2018-8479
5.6 - Medium
- September 13, 2018
A spoofing vulnerability exists for the Azure IoT Device Provisioning for the C SDK library using the HTTP protocol on Windows platform, aka "Azure IoT SDK Spoofing Vulnerability." This affects C SDK.
Improper Certificate Validation
A spoofing vulnerability exists when the Azure IoT Device Provisioning AMQP Transport library improperly validates certificates over the AMQP protocol
CVE-2018-8119
5.6 - Medium
- May 09, 2018
A spoofing vulnerability exists when the Azure IoT Device Provisioning AMQP Transport library improperly validates certificates over the AMQP protocol, aka "Azure IoT SDK Spoofing Vulnerability." This affects C# SDK, C SDK, Java SDK.
Improper Certificate Validation
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Java Software Development Kit or by Microsoft? Click the Watch button to subscribe.
