{"id":"CVE-2024-20926","aliases":["BIT-java-2024-20926","BIT-java-min-2024-20926","BIT-jre-2024-20926"],"modified":"2026-05-18T05:57:42.834404576Z","published":"2024-01-16T21:41:16.336Z","related":["ALSA-2024:0265","ALSA-2024:0266","CGA-42mc-wfgj-3x85","SUSE-SU-2024:0203-1","SUSE-SU-2024:0321-1","SUSE-SU-2024:0479-1","SUSE-SU-2024:0605-1","SUSE-SU-2024:0619-1","SUSE-SU-2024:0804-1","SUSE-SU-2024:0847-1","openSUSE-SU-2024:13602-1","openSUSE-SU-2024:13654-1","openSUSE-SU-2025:0066-1"],"database_specific":{"unresolved_ranges":[{"source":"AFFECTED_FIELD","extracted_events":[{"last_affected":"Oracle Java SE:8u391"},{"last_affected":"Oracle Java SE:8u391-perf"},{"last_affected":"Oracle Java SE:11.0.21"},{"last_affected":"Oracle GraalVM for JDK:17.0.9"},{"last_affected":"Oracle GraalVM Enterprise Edition:20.3.12"},{"last_affected":"Oracle GraalVM Enterprise Edition:21.3.8"},{"last_affected":"Oracle GraalVM Enterprise Edition:22.3.4"}]}],"cna_assigner":"oracle","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/20xxx/CVE-2024-20926.json"},"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/01/msg00023.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/20xxx/CVE-2024-20926.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-20926"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20240201-0002/"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20241108-0002/"},{"type":"ADVISORY","url":"https://www.oracle.com/security-alerts/cpujan2024.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/graalvm/graalvm-ce-builds","events":[{"introduced":"0"},{"last_affected":"b3447b939624c3756d8d2e0540628dd30880c8b6"}],"database_specific":{"source":"CPE_FIELD","cpe":["cpe:2.3:a:oracle:graalvm_for_jdk:17.0.9:*:*:*:*:*:*:*","cpe:2.3:a:oracle:graalvm_for_jdk:21.0.1:*:*:*:*:*:*:*","cpe:2.3:a:oracle:jdk:17.0.9:*:*:*:*:*:*:*","cpe:2.3:a:oracle:jdk:21.0.1:*:*:*:*:*:*:*","cpe:2.3:a:oracle:jre:17.0.9:*:*:*:*:*:*:*","cpe:2.3:a:oracle:jre:21.0.1:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"0"},{"last_affected":"17.0.9"},{"last_affected":"21.0.1"}]}}],"versions":["jdk-21.0.1","jdk-21.0.0","jdk-17.0.9","graal-23.0.2","jdk-20.0.2","jdk-17.0.8","graal-23.0.1","vm-ce-22.3.3","vm-22.3.3","jdk-20.0.1","jdk-17.0.7","graal-23.0.0","vm-22.3.2","vm-22.3.1","vm-22.3.0","vm-22.2.0","vm-21.3.3.1","vm-21.3.3","vm-22.1.0","vm-21.3.2","vm-20.3.6","vm-22.0.0.2","vm-21.3.1","vm-20.3.5","vm-ce-21.2.0","vm-20.0.0","vm-19.3.1","vm-19.3.0.2","vm-19.3.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-20926.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}