CVE-2023-22110

CVE-2023-22110 affects Oracle MySQL Server (Server: Optimizer). Affected: MySQL 8.0.33 and earlier. Vulnerability allows a high-privilege, remote attacker to cause a hang or frequent, repeatable crashes (complete DOS) via network access across multiple protocols. Base score 4.9 (Availability impa...

CVE-2023-22110

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-22108

CVE-2023-22108 is a vulnerability in Oracle WebLogic Server (Oracle Fusion Middleware) affecting Core in versions 12.2.1.4.0 and 14.1.1.0.0. An unauthenticated attacker with network access via T3/IIOP can compromise the server, potentially leading to unauthorized data access or full server access...

CVE-2023-22104

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

CVE-2023-22098

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

CVE-2023-22094

CVE-2023-22094 : Vulnerability in Oracle MySQL Installer (component: Installer: General). Affected: MySQL Installer versions prior to 1.6.8. Attack requires logon to the infrastructure where MySQL Installer runs and user interaction. Successful exploitation can lead to unauthorized creation, dele...

CVE-2023-22095

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. The supported version that is affected is 8.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

CVE-2023-22089

CVE-2023-22089 affects Oracle WebLogic Server (Fusion Middleware), specifically Core component in 12.2.1.4.0 and 14.1.1.0.0. The issue allows an unauthenticated attacker with network access via T3, IIOP (and other protocols per sources) to potentially takeover the WebLogic Server. Public risk fac...

CVE-2023-22084

Disclaimer: This data contains information about vulnerable...

CVE-2023-22077

CVE-2023-22077 affects Oracle Database Server’s Recovery Manager. Affected: Oracle Database versions 19.3–19.20 and 21.3–21.11. The flaw allows a high-privilege attacker with a DBA role and network access via Oracle Net to cause a hang or frequent crash of Recovery Manager (denial of service). CV...

CVE-2023-22078

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

CVE-2023-22075

CVE-2023-22075 affects Oracle Database Server, specifically the Database Sharding component. Affected versions are 19.3–19.20 and 21.3–21.11. The issue arises from insufficient input validation in Oracle Database Sharding, enabling a high-privilege user with network access via Oracle Net to cause...

CVE-2023-22074

CVE-2023-22074 affects Oracle Database Server, specifically the Database Sharding component. Affected versions are 19.3–19.20 and 21.3–21.11. The root issue allows a highly privileged attacker (needs Create Session and Select Any Dictionary) with network access via Oracle Net, plus user interacti...

CVE-2023-22073

CVE-2023-22073 affects Oracle Database Server’s Oracle Notification Server component. Affected versions are 19.3–19.20 and 21.3–21.11. The vulnerability allows an unauthenticated attacker with access to the physical network segment to compromise Oracle Notification Server and read a subset of dat...

CVE-2023-22072

CVE-2023-22072 affects Oracle WebLogic Server (Core) in Oracle Fusion Middleware, specifically 12.2.1.3.0. The vulnerability allows unauthenticated remote takeover via network access over T3, IIOP and other protocols, with a CVSS v3.1 score of 9.8 (Confidentiality, Integrity, Availability). Explo...

CVE-2023-22071

CVE-2023-22071 affects Oracle Database Server, specifically the PL/SQL component. Affected versions are 19.3–19.20 and 21.3–21.11. The vulnerability allows a high-privileged attacker with Create Session and Execute on sys.utl_http and network access via Oracle Net to compromise PL/SQL. Exploitati...

CVE-2023-22068

CVE-2023-22068 affects Oracle MySQL Server (InnoDB). Affected: MySQL 8.0.34 and earlier, and 8.1.0. An attacker with network access via multiple protocols and high privileges can cause the server to hang or crash (DoS). No explicit exploitation details are provided beyond this claim. Remediation:...

CVE-2023-22065

CVE-2023-22065 affects Oracle MySQL Server (Server: Optimizer) with vulnerable versions 8.0.33 and earlier. Exploitation can lead to a hang or frequent crash (DoS) of MySQL Server. Remediation in connected advisories points to upgrading to a fixed release (e.g., MySQL 8.0.34+ or vendor-specific p...

CVE-2023-22064

CVE-2023-22064 affects Oracle MySQL Server (Server: Optimizer) with affected versions 8.0.34 and earlier. The vulnerability allows a high-privilege attacker with network access via multiple protocols to cause a hang or repeatable crash (a complete DoS) of MySQL Server; CVSS v3.1 base score 4.9 (A...

CVE-2023-22028

CVE-2023-22028 affects Oracle MySQL Server (Server: Optimizer). Affected: MySQL 5.7.x up to 5.7.43 and 8.0.x up to 8.0.31. Exploitation can lead to a high-privilege attacker over network causing a hang or frequent crash (DoS) of MySQL Server. Connected sources indicate Oracle CPU advisory and ven...