CVE-2022-21282: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supp

A vulnerability in Oracle Java SE and GraalVM Enterprise Edition's JAXP component (a part of Java that handles XML processing) allows an attacker on a network to read some data they shouldn't be able to access without needing to log in. This mainly affects Java programs that run downloaded code from the internet in a sandbox (a restricted environment meant to contain untrusted code), and it has a CVSS score (a 0-10 severity rating) of 5.3.