Oracle GraalVM for JDK Partial Denial-of-Service Vulnerability

Vulnerability

A vulnerability has been identified in Oracle GraalVM for JDK version 24.0.1, specifically within the Native Image component. This vulnerability, which is difficult to exploit, allows an unauthenticated attacker with network access via HTTP to compromise the affected GraalVM version. Successful exploitation can lead to a partial denial-of-service condition, causing some disruption in service availability.

Impact

Exploitation of this vulnerability can cause a partial denial-of-service condition in Oracle GraalVM for JDK, disrupting normal service availability.

Added: Jul 15, 2025, 10:37 PM

Updated: Jul 15, 2025, 10:37 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

0.6

exploitability

4.7

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

0.6

exploitability

4.7

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle GraalVM for JDK Partial Denial-of-Service Vulnerability

Vulnerability

Impact

Affected Products

Oracle GraalVM

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating