U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2021-35559

Change History

CVE Modified by CISA-ADP 6/16/2026 11:57:42 PM

Action Type Old Value New Value
Added Affected

                  
                
              
[{"vendor":"oracle","product":"java_se","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*"],"versions":[{"version":"7u311","status":"affected"}]},{"vendor":"oracle","product":"java_se","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*"],"versions":[{"version":"8u301","status":"affected"}]},{"vendor":"oracle","product":"java_se","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:java_se:11:*:*:*:*:*:*:*"],"versions":[{"version":"11.0.12","status":"affected"}]},{"vendor":"oracle","product":"java_se","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*"],"versions":[{"version":"17","status":"affected"}]},{"vendor":"oracle","product":"jdk","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*"],"versions":[{"version":"7u311","status":"affected"}]},{"vendor":"oracle","product":"jdk","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*"],"versions":[{"version":"8u301","status":"affected"}]},{"vendor":"oracle","product":"jdk","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jdk:11.0.12:*:*:*:*:*:*:*"],"versions":[{"version":"11.0.12","status":"affected"}]},{"vendor":"oracle","product":"jdk","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*"],"versions":[{"version":"17","status":"affected"}]},{"vendor":"oracle","product":"jre","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jre:-:*:*:*:*:*:*:*"],"versions":[{"version":"7u311","status":"affected"}]},{"vendor":"oracle","product":"jre","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jre:-:*:*:*:*:*:*:*"],"versions":[{"version":"8u301","status":"affected"}]},{"vendor":"oracle","product":"jre","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jre:11.0.1:*:*:*:*:*:*:*"],"versions":[{"version":"11.0.12","status":"affected"}]},{"vendor":"oracle","product":"jre","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jre:-:*:*:*:*:*:*:*"],"versions":[{"version":"17","status":"affected"}]},{"vendor":"oracle","product":"jre","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jre:-:*:*:*:*:*:*:*"],"versions":[{"version":"oracle_graalvm_enterprise_edition_20.3.3","status":"affected"}]},{"vendor":"oracle","product":"jre","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jre:-:*:*:*:*:*:*:*"],"versions":[{"version":"oracle_graalvm_enterprise_edition_21.2.0","status":"affected"}]},{"vendor":"oracle","product":"jdk","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*"],"versions":[{"version":"oracle_graalvm_enterprise_edition_20.3.3","status":"affected"}]},{"vendor":"oracle","product":"java_se","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*"],"versions":[{"version":"oracle_graalvm_enterprise_edition_20.3.3","status":"affected"}]},{"vendor":"oracle","product":"java_se","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:java_se:*:*:*:*:*:*:*:*"],"versions":[{"version":"oracle_graalvm_enterprise_edition_21.2.0","status":"affected"}]},{"vendor":"oracle","product":"jdk","defaultStatus":"unknown","cpes":["cpe:2.3:a:oracle:jdk:*:*:*:*:*:*:*:*"],"versions":[{"version":"oracle_graalvm_enterprise_edition_21.2.0","status":"affected"}]}]
Added SSVC

                  
                
              
{"timestamp":"2024-06-25T16:02:35.502056Z","id":"CVE-2021-35559","options":[{"exploitation":"poc"},{"automatable":"yes"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}

CVE Modified by Oracle 6/16/2026 11:57:42 PM

Action Type Old Value New Value
Added Affected

                  
                
              
[{"vendor":"Oracle Corporation","product":"Java SE JDK and JRE","versions":[{"version":"Java SE:7u311","status":"affected"},{"version":"Java SE:8u301","status":"affected"},{"version":"Java SE:11.0.12","status":"affected"},{"version":"Java SE:17","status":"affected"},{"version":"Oracle GraalVM Enterprise Edition:20.3.3","status":"affected"},{"version":"Oracle GraalVM Enterprise Edition:21.2.0","status":"affected"}]}]