Jdk
by Oracle
Standard maintenance is sufficient
Jdk has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
4.5%
Confirmed actively exploited (CISA)
2.2%
Public exploit code available
2.2%
Based on 357 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2012-4681 | 9.8 | 94.1% | Yes |
| CVE-2012-1723 | 9.8 | 94.1% | Yes |
| CVE-2016-3427 | 9.8 | 94.0% | Yes |
| CVE-2015-4000 | 3.7 | 93.9% | — |
| CVE-2013-0422 | 9.8 | 93.6% | Yes |
| CVE-2011-3544 | 9.8 | 92.5% | Yes |
| CVE-2017-3241 | 9.0 | 76.8% | — |
| CVE-2015-2590 | 9.8 | 63.0% | Yes |
| CVE-2022-21449 | 7.5 | 34.3% | — |
| CVE-2023-41993 | 8.8 | 24.4% | Yes |
| CVE-2016-9843 | 9.8 | 15.1% | — |
| CVE-2016-9841 | 9.8 | 13.5% | — |
| CVE-2016-0636 | 8.1 | 13.0% | — |
| CVE-2016-9840 | 8.8 | 13.0% | — |
| CVE-2016-9842 | 8.8 | 12.1% | — |
| CVE-2016-3500 | 5.3 | 11.6% | — |
| CVE-2016-3508 | 5.3 | 9.4% | — |
| CVE-2016-3425 | 4.3 | 9.1% | — |
| CVE-2016-3498 | 5.3 | 7.8% | — |
| CVE-2015-4902 | 5.3 | 7.7% | Yes |
9
/ 100
low-risk
Active Threat
6/50 · Minimal
Exploit Availability
3/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.