Vulnerability	Vulnerable Version
M Signed to Unsigned Conversion Error org.graalvm.sdk:graal-sdk is a high-performance JDK distribution designed to accelerate the execution of applications written in Java and other JVM languages along with support for JavaScript, Ruby, Python, and a number of other popular languages. Affected versions of this package are vulnerable to Signed to Unsigned Conversion Error through the use of multiple protocols. An attacker can compromise accessible data and perform unauthorized update, insert, or delete operations by exploiting APIs in the specified component, typically through a web service which supplies data to these APIs. Note: This is only exploitable if Java deployments load and run untrusted code from the internet and rely on the Java sandbox for security. How to fix Signed to Unsigned Conversion Error? Upgrade `org.graalvm.sdk:graal-sdk` to version 20.3.17, 21.3.13 or higher.	[,20.3.17)[21.0.0,21.3.13)

Signed to Unsigned Conversion Error

org.graalvm.sdk:graal-sdk is a high-performance JDK distribution designed to accelerate the execution of applications written in Java and other JVM languages along with support for JavaScript, Ruby, Python, and a number of other popular languages.

Affected versions of this package are vulnerable to Signed to Unsigned Conversion Error through the use of multiple protocols. An attacker can compromise accessible data and perform unauthorized update, insert, or delete operations by exploiting APIs in the specified component, typically through a web service which supplies data to these APIs.

Note:

This is only exploitable if Java deployments load and run untrusted code from the internet and rely on the Java sandbox for security.

How to fix Signed to Unsigned Conversion Error?

Upgrade org.graalvm.sdk:graal-sdk to version 20.3.17, 21.3.13 or higher.

[,20.3.17)[21.0.0,21.3.13)

Go back to all versions of this package