https://www.java.com/en/uninstall/attachmentA.xml
It seems that Java might not completely uninstall those old vulnerable versions .... Which consequently can still be exploited....
I dont actually have Java installed on my personal PC but for those that do there is now a nice uninstaller that will remove all those old versions that were left behind: https://java.com/en/uninstall/
A bit of personal advice about running it on a "work" machine, be careful. In my experience some legacy software and systems only work with older versions of Java.
It seems that Java might not completely uninstall those old vulnerable versions .... Which consequently can still be exploited....
I dont actually have Java installed on my personal PC but for those that do there is now a nice uninstaller that will remove all those old versions that were left behind: https://java.com/en/uninstall/
A bit of personal advice about running it on a "work" machine, be careful. In my experience some legacy software and systems only work with older versions of Java.