SA-2023-099 – JavaFX allows untrusted code (CVE-2023-22043)

Extreme Networks Security Advisory

The JavaFX component contained in some versions of Oracle Java SE, OpenJDK, and Corretto is vulnerable to attacks via network access. To be vulnerable, deployments should be Java clients running sandboxed Java Web Start applications or applets and allow client untrusted code deployments.