Oracle MySQL Server JSON Component Denial of Service Vulnerability

Oracle MySQL Server is an open source relational database management system that provides data storage, querying and management capabilities. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: JSON component to properly handle...

Oracle MySQL Server GIS Component Denial of Service Vulnerability

Oracle MySQL Server is an open source relational database management system with a GIS component that provides geospatial data processing capabilities. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the GIS component to properly handle a...

Oracle VM VirtualBox Core Component Denial of Service Vulnerability (CNVD-2026-18569)

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle that supports running multiple operating systems on a single host. A denial of service vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle RDP...

Oracle VM VirtualBox Core Component Elevation of Privilege Vulnerability (CNVD-2026-18425)

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. An elevation of privilege vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle privilege...

PT-2026-34450

A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fails to validate that each node's Length field is at least 4 bytes, which is the minimum size for an EFI Extensible Firmware Interface device path node header. A local user could exploit this...

Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18430)

Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from a flaw in the...

Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18576)

Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from a flaw in the...

Oracle VM VirtualBox Core Component Elevation of Privilege Vulnerability (CNVD-2026-18539)

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. An elevation of privilege vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle privilege...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013772)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013772 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: pch: Fix PCI device refcount leak in pchrequestdma As comment of pcigetslot says, it...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013761)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013761 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI/IOV: Fix race between SR-IOV enable/disable and hotplug Commit 05703271c3cd PCI/IOV: Add PCI...

Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18431)

Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from an internal...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013525)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013525 advisory. In the Linux kernel, the following vulnerability has been resolved: vdpa: fix use-after-free on vpvdparemove When vpvdpa driver is unbind, vpvdpa is freed in...

Linux Distros Unpatched Vulnerability : CVE-2026-31468

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Fix double free in dma-buf feature The error path through vfiopcicorefeaturedmabuf...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013572)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013572 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix NULL-ptr-deref in rxeqpdocleanup when socket create failed There is a null-ptr-dere...

EUVD-2026-24456

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle V...

EUVD-2026-24455

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle...

EUVD-2026-24454

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via RDP to compromise Oracle VM VirtualBox. Successful attacks of this...

EUVD-2026-24374

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Core. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP to compromise Oracle Identity Manager...

EUVD-2026-24405

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: JSON. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...

EUVD-2026-24377

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle WebLogic Server...