CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1853 matches found

ATTACKERKB•added 2022/01/19 12:15 p.m.•2 views

CVE-2022-21255

Vulnerability in the Oracle Configurator product of Oracle E-Business Suite component: UI Servlet. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Configurator. Successful...

8.1CVSS7.2AI score0.01091EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21246

Vulnerability in the Oracle Communications Operations Monitor product of Oracle Communications component: Mediation Engine. Supported versions that are affected are 3.4, 4.2, 4.3, 4.4 and 5.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromi...

5.4CVSS6.8AI score0.00524EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21262

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Samples. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Serve...

6.1CVSS6.7AI score0.00946EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21261

6.1CVSS6.7AI score0.00946EPSS

Exploits0References2Affected Software1

OSV•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21250

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: GL Accounts. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Trade Management...

8.1CVSS5.8AI score

Exploits0References1

OSV•added 2022/01/19 12:15 p.m.•2 views

CVE-2021-35687

Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications component: Unified Metadata Manager. Supported versions that are affected are 8.0.7-8.1.1. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS6.7AI score

Exploits0References1

Prion•added 2022/01/19 12:15 p.m.•11 views

Code injection

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering component: Web API. Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2 and 20.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

5.8CVSS5.1AI score0.00825EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/01/19 11:26 a.m.•15 views

CVE-2022-21399

Vulnerability in the Oracle Communications Operations Monitor product of Oracle Communications component: Mediation Engine. Supported versions that are affected are 3.4, 4.2, 4.3, 4.4 and 5.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6.6CVSS6.3AI score0.00667EPSS

Exploits0References1

Vulnrichment•added 2022/01/19 11:26 a.m.•12 views

CVE-2022-21386

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Web Container. Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

6.1CVSS6.3AI score0.00946EPSS

Exploits0References1

CVE•added 2022/01/19 11:26 a.m.•55 views

CVE-2022-21376

CVE-2022-21376 affects Oracle Construction and Engineering’s Primavera Portfolio Management (Web Access). Vulnerable versions include 18.0.0.0–18.0.3.0, 19.0.0.0–19.0.1.2, and 20.0.0.0. An unauthenticated, network-accessible web request can compromise Primavera Portfolio Management, with user int...

5.8CVSS5.1AI score0.00825EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2022/01/19 11:22 a.m.•14 views

CVE-2022-21269

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering component: Web Access. Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2, 20.0.0.0 and 20.0.0.1. Easily exploitable vulnerability allows unauthenticated attacker with...

6.1CVSS6.3AI score0.00825EPSS

Exploits0References1

Vulnrichment•added 2022/01/19 11:22 a.m.•10 views

CVE-2022-21261

6.1CVSS6.3AI score0.00946EPSS

Exploits0References1

CNNVD•added 2022/01/19 12:0 a.m.•3 views

Oracle PeopleSoft Enterprise PeopleTools 安全漏洞

Oracle PeopleSoft Enterprise PeopleTools is Oracle's technology for providing PeopleSoft applications with the ability to stay in sync with users' needs and expectations. A security vulnerability exists in Oracle PeopleSoft Enterprise PeopleTools that could allow an unauthenticated attacker to...

6.1CVSS7AI score0.00825EPSS

Exploits0References2

CNNVD•added 2022/01/19 12:0 a.m.•4 views

Oracle Construction and Engineering Suite 安全漏洞

Oracle Construction and Engineering Suite is a portfolio management solution suite product for construction projects from Oracle Corporation. A security vulnerability exists in Oracle Construction and Engineering Suite's Primavera Portfolio Management product that could allow an attacker with...

4.9CVSS6.6AI score0.00498EPSS

Exploits0References3

CNNVD•added 2022/01/19 12:0 a.m.•3 views

Oracle Communications Applications 输入验证错误漏洞

Oracle Communications Applications is an advanced communications and collaboration services application from Oracle Corporation. A security vulnerability exists in the Oracle Communications Billing and Revenue Management product for Oracle Communications Applications component: Connection Manager...

10CVSS8.3AI score0.0186EPSS

Exploits0References4

CNNVD•added 2022/01/19 12:0 a.m.•4 views

Oracle PeopleSoft Enterprise PeopleTools 安全漏洞

Oracle PeopleSoft Enterprise PeopleTools is Oracle's technology for providing PeopleSoft applications with the ability to stay in sync with users' needs and expectations. A security vulnerability exists in the Oracle PeopleSoft Enterprise PeopleTools product that could allow a low-privileged...

6.5CVSS7.1AI score0.0093EPSS

Exploits0References2

CNNVD•added 2022/01/19 12:0 a.m.•3 views

Oracle Communications Applications 输入验证错误漏洞

9.9CVSS8.3AI score0.01208EPSS

Exploits0References4

Positive Technologies•added 2021/10/27 12:0 a.m.•2 views

PT-2021-20858 · Unknown · Kiwi Syslog Server

Name of the Vulnerable Software and Affected Versions: Kiwi Syslog Server versions 9.7.2 and earlier Description: The Secure flag is not set in the SSL Cookie, which means the cookie can be sent over unencrypted requests if the application is accessible over both HTTP and HTTPS. This poses a risk...

5.3CVSS5AI score0.00502EPSS

Exploits0References5

OSV•added 2021/10/20 11:17 a.m.•1 views

CVE-2021-35665

Vulnerability in the Hyperion Financial Reporting product of Oracle Hyperion component: Repository. The supported version that is affected is 11.2.6.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Financial Reporting...

6.1CVSS6.8AI score0.00815EPSS

Exploits0References1

OSV•added 2021/10/20 11:17 a.m.•0 views

CVE-2021-35662

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

7.5CVSS7.3AI score0.01418EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by