Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1367 matches found

BDU FSTEC
BDU FSTECadded 2022/06/27 12:0 a.m.6 views

The vulnerability of the Core component in Oracle VM VirtualBox allows a hacker to gain access to data read by the system.

The vulnerability of the Core component in Oracle VM VirtualBox exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to and read data...

3.8CVSS6.3AI score0.00372EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTECadded 2022/06/23 12:0 a.m.7 views

The vulnerability of iCare subcomponents, within the Oracle Hospitality Reporting and Analytics software suite of Oracle Food and Beverage Applications, allows a perpetrator to gain access to read data or modify data.

The vulnerability of iCare subcomponents, as well as the Configuration component of the Oracle Hospitality Reporting and Analytics package from the Oracle Food and Beverage Applications, exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to ga...

8.5CVSS7.6AI score0.01405EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTECadded 2022/06/15 12:0 a.m.6 views

The vulnerability of the Web Runtime component of the JD Edwards EnterpriseOne Tools system allows a perpetrator to gain access to and modify data.

The vulnerability of the Web Runtime component of the JD Edwards EnterpriseOne Tools system exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify, add, or delete data using the HTTP protocol...

5.4CVSS6.6AI score0.00511EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2022/06/15 12:0 a.m.7 views

The vulnerability of the People Management component of the Oracle Human Resources system, a software for managing personnel. This vulnerability exists in the Oracle E-Business Suite, a business automation solution. It allows an attacker to gain read access to data or modify data.

The vulnerability of the People Management component of the Oracle Human Resources system, a tool for automating business operations within the Oracle E-Business Suite, exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to gain read, modify,...

8.5CVSS7.6AI score0.00931EPSS
Exploits0References3Affected Software1
Microsoft CVE
Microsoft CVEadded 2022/06/14 7:0 a.m.213 views

Intel: CVE-2022-21123 Shared Buffers Data Read (SBDR)

...

5.5CVSS7.1AI score0.06283EPSS
Exploits0
NVD
NVDadded 2022/05/12 6:16 p.m.29 views

CVE-2021-26366

An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity...

7.1CVSS0.0023EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/05/11 12:0 a.m.6 views

PT-2022-11651 · Wso2 · Wso2 Identity Server +2

Name of the Vulnerable Software and Affected Versions: WSO2 API Manager versions 2.6.0 through 4.0.0 WSO2 IS as Key Manager versions 5.7.0 through 5.10.0 WSO2 Identity Server versions 5.7.0 through 5.11.0 Description: The issue allows attackers to gain read access to sensitive information or caus...

9.1CVSS9.1AI score0.03667EPSS
Exploits0References11
BDU FSTEC
BDU FSTECadded 2022/05/11 12:0 a.m.6 views

The vulnerability of the RDBMS Gateway/Generic ODBC Connectivity component of the Oracle Database Server allows a hacker to gain access to read data or to modify, add, or delete data.

The vulnerability of the RDBMS Gateway/Generic ODBC Connectivity component of the Oracle Database Server exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to gain read access to data, or to modify, add, or delete data using network packe...

5.5CVSS6.6AI score0.00532EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessusadded 2022/04/25 12:0 a.m.44 views

EulerOS 2.0 SP8 : freerdp (EulerOS-SA-2022-1564)

According to the versions of the freerdp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and crash the...

6.9CVSS6.7AI score0.02537EPSS
Exploits4References18
OSV
OSVadded 2022/04/19 9:15 p.m.1 views

CVE-2022-21487

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.34. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

3.8CVSS6.7AI score0.00372EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2022/04/19 9:15 p.m.5 views

CVE-2022-21485

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

2.9CVSS6.6AI score0.0175EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2022/04/19 9:15 p.m.6 views

CVE-2022-21481

Vulnerability in the PeopleSoft Enterprise FIN Cash Management product of Oracle PeopleSoft component: Financial Gateway. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...

5.4CVSS6.7AI score0.00483EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2022/04/19 9:15 p.m.4 views

CVE-2022-21468

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Popups. Supported versions that are affected are 12.2.4-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...

6.1CVSS6.9AI score0.00841EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2022/04/19 9:15 p.m.3 views

CVE-2022-21472

Vulnerability in the Oracle FLEXCUBE Universal Banking product of Oracle Financial Services Applications component: Infrastructure. Supported versions that are affected are 12.4, 14.0-14.3 and 14.5. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

5.9CVSS6.8AI score0.00592EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2022/04/19 9:15 p.m.12 views

AZL-9553 CVE-2022-21479 affecting package mysql for versions less than 8.0.29-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS6.4AI score0.01509EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2022/04/19 9:15 p.m.5 views

CVE-2022-21479

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS6.5AI score0.01509EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2022/04/19 9:15 p.m.5 views

CVE-2022-21453

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.1CVSS6.7AI score0.00831EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2022/04/19 9:15 p.m.4 views

CVE-2022-21464

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Business Logic Infra SEC. The supported version that is affected is Prior to 9.2.6.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

8.2CVSS7.2AI score0.02115EPSS
Exploits0References2
OSV
OSVadded 2022/04/19 9:15 p.m.4 views

CVE-2022-21464

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Business Logic Infra SEC. The supported version that is affected is Prior to 9.2.6.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

8.2CVSS7.3AI score0.02115EPSS
Exploits0References1
OSV
OSVadded 2022/04/19 9:15 p.m.5 views

CVE-2022-21446

Vulnerability in the Oracle Solaris product of Oracle Systems component: Utility. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris. Successful attacks of this...

8.2CVSS7.3AI score0.01454EPSS
Exploits0References1
Rows per page
Query Builder