Microsoft - Java Software Development Kit CVE

Filtered by vendor Microsoft Subscribe

Filtered by product Java Software Development Kit

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-0729	1 Microsoft	1 Java Software Development Kit	2021-07-21	7.5 HIGH	9.8 CRITICAL
An Elevation of Privilege vulnerability exists in the way Azure IoT Java SDK generates symmetric keys for encryption, allowing an attacker to predict the randomness of the key, aka 'Azure IoT Java SDK Elevation of Privilege Vulnerability'.

Vulnerabilities (CVE)