1367 matches found
The vulnerability of the Candidate Self Service Registration component of the Oracle iRecruitment software platform allows a perpetrator to gain access to read data.
The vulnerability of the Candidate Self Service Registration component in the Oracle iRecruitment software platform exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to and read data through HTTP requests...
The vulnerability of the Fluid Core component in the Oracle PeopleSoft Enterprise PeopleTools business application suite allows a hacker to gain read, modify, add, or delete access to data.
The vulnerability of the Fluid Core component in the Oracle PeopleSoft Enterprise PeopleTools business application suite exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker, operating remotely, to gain access to read, modify, add, or delete data...
The vulnerability of component E1 in the JD Edwards EnterpriseOne Orchestrator application for business analytics allows a hacker to gain read access to data.
The vulnerability of component E1 in the JD Edwards EnterpriseOne Orchestrator application exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to gain read access to data through HTTP requests...
RHEL 7 : kernel-rt (RHSA-2022:5939)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5939 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...
Shell component vulnerability: The GUI client for developers and database administrators, Oracle MySQL Shell for VS Code, allows an attacker to gain access to read, modify, or delete data.
Shell component vulnerability: The GUI client for developers and database administrators, Oracle MySQL Shell for VS Code, has a vulnerability related to insecure privilege management. Exploiting this vulnerability can allow an attacker to gain read, modify, or delete access to data...
CVE-2022-21555
Vulnerability in the MySQL Shell for VS Code product of Oracle MySQL component: Shell: GUI. Supported versions that are affected are 1.1.8 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Shell for VS Code executes to...
CVE-2022-21532
Vulnerability in the JD Edwards EnterpriseOne Orchestrator product of Oracle JD Edwards component: E1 IOT Orchestrator. Supported versions that are affected are 9.2.6.3 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards...
CVE-2022-21545
Vulnerability in the Oracle iRecruitment product of Oracle E-Business Suite component: Candidate Self Service Registration. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
DEBIAN-CVE-2022-21540
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edition: 20.3.6, 21.3.2 and 22.1.0. Easily exploitab...
CVE-2022-21524
Vulnerability in the Oracle Solaris product of Oracle Systems component: Filesystem. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise Oracle Solaris. Successful attacks of this vulnerability can...
CVE-2022-21524
Vulnerability in the Oracle Solaris product of Oracle Systems component: Filesystem. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise Oracle Solaris. Successful attacks of this vulnerability can...
CVE-2022-21520
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Fluid Core. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...
CVE-2022-21516
Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Enterprise Manager Install. Supported versions that are affected are 13.4.0.0 and 13.5.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
CVE-2022-21516
Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Enterprise Manager Install. Supported versions that are affected are 13.4.0.0 and 13.5.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
UBUNTU-CVE-2022-21539
Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.29 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of th...
CVE-2022-33138
A vulnerability has been identified in SIMATIC MV540 H All versions V3.3, SIMATIC MV540 S All versions V3.3, SIMATIC MV550 H All versions V3.3, SIMATIC MV550 S All versions V3.3, SIMATIC MV560 U All versions V3.3, SIMATIC MV560 X All versions V3.3. Affected devices do not perform authentication f...
CVE-2022-33138
A vulnerability has been identified in SIMATIC MV540 H All versions V3.3, SIMATIC MV540 S All versions V3.3, SIMATIC MV550 H All versions V3.3, SIMATIC MV550 S All versions V3.3, SIMATIC MV560 U All versions V3.3, SIMATIC MV560 X All versions V3.3. Affected devices do not perform authentication f...
The vulnerability of the Core component in Oracle VM VirtualBox allows a hacker to gain access to data read by the system.
The vulnerability of the Core component in Oracle VM VirtualBox exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to and read data...
The vulnerability of the Console component of the Oracle WebLogic Server application server allows a attacker to gain read access to data or modify data.
The vulnerability of the Console component of the Oracle WebLogic Server application lies in reading data beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to gain access to read data or modify data through specially crafted HTTP requests...
The vulnerability of the Process Scheduler component in the PeopleSoft Enterprise PeopleTools business application package allows a hacker to gain read access to data or modify data.
The vulnerability of the Process Scheduler component in the PeopleSoft Enterprise PeopleTools business application exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain read access to data or modify data using special...