CVE-2023-21988

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

Buffer overflow

Vulnerability in the Oracle Banking Virtual Account Management product of Oracle Financial Services Applications component: Routing Hub. Supported versions that are affected are 14.5, 14.6 and 14.7. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

Buffer overflow

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

Buffer overflow

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

Code injection

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

Code injection

Vulnerability in the Oracle Solaris product of Oracle Systems component: Core. The supported version that is affected is 10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful...

Code injection

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-22001

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

CVE-2023-21991

Summary: CVE-2023-21991 affects Oracle VM VirtualBox (Core). The vulnerability is present in supported VirtualBox versions prior to 6.1.44 and prior to 7.0.8. It enables a high-privilege attacker with local logon to the host to compromise VirtualBox, with potential unauthorized read access to a s...

CVE-2023-21988

CVE-2023-21988 affects Oracle VM VirtualBox Core. Affected: Oracle VM VirtualBox prior to 6.1.44 and prior to 7.0.8. Exploitation is described as local, with a low-privileged user who can log on to the host, potentially leading to unauthorized read access to a subset of VirtualBox data. The vulne...

CVE-2023-21989

CVE-2023-21989 affects Oracle VM VirtualBox (Core) in Oracle Virtualization. Affected versions are prior to 6.1.44 and prior to 7.0.8. The issue is described as easily exploitable, allowing a high-privileged attacker with local logon to the host running VirtualBox to compromise the VirtualBox com...

CVE-2023-21982

CVE-2023-21982 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions include 8.0.32 and earlier. The vulnerability enables a high-privilege attacker with network access via multiple protocols to cause the server to hang or crash (DoS). Several connected sources corroborate...

CVE-2023-21982

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-21979

Oracle WebLogic Server (Core) vulnerability CVE-2023-21979 affects Oracle Fusion Middleware WebLogic Server versions 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. An unauthenticated attacker can exploit over T3 to access or exfiltrate data, per multiple sources in the connected documents. The issue is a...

CVE-2023-21977

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-21976

CVE-2023-21976 affects Oracle MySQL Server (component: Server: Optimizer) for MySQL 8.0.32 and earlier. An attacker with network access via multiple protocols can exploit this to cause a hang or crash (DOS). Remediation observed in connected docs includes upgrading to newer MySQL versions (e.g., ...

CVE-2023-21964

CVE-2023-21964 affects Oracle WebLogic Server Core, with vulnerable versions 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. The issue allows unauthenticated network access via T3 to trigger a hang or full crash (DoS). Several connected sources (Oracle APR 2023 CPU advisory, Nessus plugin, PT-2023-2481) c...

CVE-2023-21953

CVE-2023-21953 affects Oracle MySQL Server, component Server: Partition , with affected versions 8.0.32 and prior . The connected materials confirm this is a vulnerability that an attacker with network access via multiple protocols could exploit to cause a hang or frequently repeatable crash (com...

CVE-2023-21946

CVE-2023-21946 affects Oracle MySQL Server, specifically the Server: Optimizer. Affected versions are 8.0.32 and earlier. The vulnerability can be exploited by a low-privilege attacker with network access via multiple protocols and can lead to a hang or frequently repeatable crash (complete DoS) ...

CVE-2023-21939

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable...