virus logo Endpoint Vulnerability

Oracle JDK CVE-2024-44309 Cross Site Scripting Vulnerability

description-logoDescription

A vulnerability in the JavaFX WebKitGTK component of Oracle Java SE 8u441 and Oracle GraalVM Enterprise Edition 20.3.17/21.3.13 allows unauthenticated network attackers to compromise the products after human interaction, potentially leading to full takeover with confidentiality, integrity, and availability loss.

affected-products-logoAffected Applications

Java JDK

Version Updates

Date Version Status Detail
2025-04-17 1.00838
New
 Java JDK

References

https://www.oracle.com/security-alerts/
ID 84937
Created Apr 05, 2026
Description
Updated		 Apr 05, 2026
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Oracle
Patch manual
Application Java JDK