CVE-2024-21138 — Vulnetix

Try Vulnetix Request Demo

CVE-2024-21138 PUBLISHED

EPSS 0.33% · 55.9th percentile

Risk Scores

EPSS Score

0.33%

55.9th percentile

Affected Products

Vendor	Product	Versions
Amazon	java-1.8.0-amazon-corretto
Amazon	java-11-amazon-corretto
Amazon	java-17-amazon-corretto
Amazon	java-11-openjdk
Amazon	java-1.8.0-openjdk

Timeline

Feb 8, 2024 PoC Published
Jul 16, 2024 CVE Published
Jul 17, 2024 EPSS Score
Aug 7, 2024 EPSS Score
Aug 28, 2024 EPSS Score
Sep 19, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score
Oct 10, 2024 EPSS Score
Oct 16, 2024 Coalition ESS Score
Oct 31, 2024 EPSS Score
Oct 31, 2024 Coalition ESS Score
Nov 11, 2024 CVE Updated

References

ALAS2-2024-2720: java-1.8.0-openjdk (important) advisory
ALAS2JAVA-OPENJDK11-2024-010: java-11-openjdk (important) advisory
ALAS2-2024-2599: java-11-amazon-corretto (important) advisory
ALAS2-2024-2600: java-17-amazon-corretto (important) advisory
ALAS2CORRETTO8-2024-013: java-1.8.0-amazon-corretto (important) advisory

Open in Interactive Console →