Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
ALINUX2-SA-2023:0020: java-1.8.0-openjdk security and bug fix update (Important)
CVEs:CVE-2023-21930CVE-2023-21937CVE-2023-21938CVE-2023-21939CVE-2023-21954CVE-2023-21967CVE-2023-21968
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.8.0-openjdk | affected | Alibaba Cloud | java-1.8.0-openjdk | — |
ALINUX2-SA-2023:0019: java-11-openjdk security and bug fix update (Important)
CVEs:CVE-2023-21930CVE-2023-21937CVE-2023-21938CVE-2023-21939CVE-2023-21954CVE-2023-21967CVE-2023-21968
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-11-openjdk | affected | Alibaba Cloud | java-11-openjdk | — |
ALINUX2-SA-2023:0017: tigervnc and xorg-x11-server security update (Important)
CVEs:CVE-2023-1393
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tigervnc | affected | Alibaba Cloud | tigervnc | — |
| xorg-x11-server | affected | Alibaba Cloud | xorg-x11-server | — |
ALINUX2-SA-2023:0018: httpd security update (Important)
CVEs:CVE-2023-25690
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| httpd | affected | Alibaba Cloud | httpd | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.