CVE-2026-22013 | Oracle Java SE/GraalVM for JDK/GraalVM Enterprise Edition JGSS improper authorization (Nessus ID 309659 / WID-SEC-2026-1201)
A vulnerability was found in Oracle Java SE, GraalVM for JDK and GraalVM Enterprise Edition. It has been declared as critical. This affects an unknown function of the component JGSS. Executing a manipulation can lead to improper authorization.
This vulnerability is registered as CVE-2026-22013. It is possible to launch the attack remotely. No exploit is available.
It is recommended to upgrade the affected component.