Code injection

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

CVE-2023-21870

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

RHEL 9 : java-11-openjdk (RHSA-2023:0202)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0202 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

CVE-2023-21865

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-21894

CVE-2023-21894 affects Oracle Global Lifecycle Management NextGen OUI Framework (NextGen Installer issues). Public sources indicate a input-validation weakness in the NextGen Installer component that can be exploited by a low-privileged user with logon to the host running the framework; exploitat...

CVE-2023-21891

Oracle BI Enterprise Edition (Oracle Fusion Middleware) Visual Analyzer contains an input-validation flaw that allows a low-privileged, network-facing attacker to access or modify data via HTTP. Affected versions are 5.9.0.0.0 through 6.4.0.0.0; successful attempts may update/insert/delete data a...

CVE-2023-21887

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

CVE-2023-21883

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-21884

CVE-2023-21884 affects Oracle VM VirtualBox (Core) where affected versions are prior to 6.1.42 and prior to 7.0.6. An attacker with local logon and high privileges can cause a hang or frequent crashes (DoS) of VirtualBox. Multiple connected advisories corroborate the same fixed versions: upgrade ...

CVE-2023-21882

CVE-2023-21882 affects Oracle MySQL Server (Server: Optimizer). Affected: MySQL 8.0.31 and earlier. attacker with network access via multiple protocols can compromise data integrity (unauthorized updates) with high privileges and no user interaction. Root cause: Server: Optimizer vulnerability. R...

CVE-2023-21880

CVE-2023-21880 affects Oracle MySQL Server (InnoDB) with affected versions 8.0.31 and earlier. The described impact is the attacker, with network access via multiple protocols and with high privileges, can cause a hang or frequent crashes (DoS) and may achieve unauthorized update/insert/delete on...

CVE-2023-21878

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-21878

CVE-2023-21878 affects MySQL Server (component: Server: Optimizer) with affected versions 8.0.31 and earlier. The vulnerability allows an attacker with network access (via multiple protocols) to potentially cause a hang or frequent crash (DoS). Public advisories in connected docs show remediation...

CVE-2023-21872

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-21870

CVE-2023-21870 is a MySQL Server vulnerability in the Server: Optimizer component. Affected versions are 8.0.31 and earlier. The issue allows a high-privilege attacker with network access via multiple protocols to cause a hang or complete denial of service (DOS) on the MySQL Server, per the initi...

CVE-2023-21871

CVE-2023-21871 concerns Oracle MySQL Server, component InnoDB. The connected documents confirm affected versions up to 8.0.31 and earlier, with an attacker able to exploit remotely across multiple protocols to achieve a hang or crash (complete DOS) of MySQL Server. The material does not provide s...

CVE-2023-21866

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-21868

CVE-2023-21868 is a vulnerability in Oracle MySQL Server (Server: Optimizer). Affected are MySQL 8.0.31 and earlier. A low-privilege, network-access attacker can cause a hang or crash (DOS). This is corroborated by connected advisories stating the same affected component/versions and impact. Reme...

CVE-2023-21865

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-21864

CVE-2023-21864 is a MySQL Server vulnerability in the Oracle MySQL product (component: Server: Optimizer). Affected versions listed across connected docs are 8.0.30 and earlier. The vulnerability allows a high-privilege attacker with network access via multiple protocols to cause a hang or repeat...