Lucene search
+L

148 matches found

vulncheck_kev
vulncheck_kev
added 2024/11/20 12:0 a.m.5 views

VulnCheck KEV: CVE-2020-14756

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core Components. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

9.8CVSS7.3AI score0.74753EPSS
Exploits4References1
nessus
nessus
added 2024/07/19 12:0 a.m.47 views

Oracle Coherence (Jul 2024 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory. - Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Third Party Eclipse Jetty. Supported versio...

7.5CVSS6.8AI score0.01433EPSS
Exploits1References4
nessus
nessus
added 2024/04/19 12:0 a.m.43 views

Oracle Coherence (April 2024 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by a vulnerability as referenced in the April 2024 CPU advisory: - Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Third Party Apache Mina SSHD. Supported versions th...

5.9CVSS7AI score0.93305EPSS
Exploits4References3
ncsc
ncsc
added 2023/10/19 12:0 a.m.12 views

Vulnerabilities fixed in Oracle Fusion Middleware

Vulnerabilities have been fixed in Oracle Fusion Middleware. A malicious party can exploit the vulnerabilities exploit them to carry out attacks that can result in the following categories of damage: Denial-of-Service DoS Remote code execution Administrator/Root privileges Access to sensitive dat...

9.8CVSS8.2AI score0.75116EPSS
Exploits14
nessus
nessus
added 2023/10/18 12:0 a.m.61 views

Oracle Coherence DoS (October 2023 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by a denial of service vulnerability as referenced in the Ocotber 2023 CPU advisory: - Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Third Party Netty. Supported...

6.5CVSS7AI score0.02459EPSS
Exploits1References3
nessus
nessus
added 2023/07/24 12:0 a.m.47 views

Oracle Coherence (Jul 2023 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by a vulnerability as referenced in the July 2023 CPU advisory. Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Centralized Thirdparty Jars Eclipse Jetty. Supported...

5.3CVSS6.8AI score0.013EPSS
Exploits0References4
nessus
nessus
added 2023/04/20 12:0 a.m.93 views

Oracle Coherence (Apr 2023 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2023 CPU advisory. - Vulnerability in the Netty component of Oracle Coherence 12.2.1.4.0 and 14.1.1.0.0. Netty component is an event-driven...

7.5CVSS6.8AI score0.02706EPSS
Exploits3References4
qualysblog
qualysblog
added 2023/04/19 11:47 a.m.394 views

Oracle Patch Tuesday April 2023 Security Update Review

Oracle has released the second quarterly edition of Critical Patch Update, which contains a group of patches for 433 security vulnerabilities. Some of the vulnerabilities addressed this month impact various products. These patches address vulnerabilities in Oracle code and third-party components...

7.5CVSS9.5AI score0.99677EPSS
Exploits130
nessus
nessus
added 2022/10/21 12:0 a.m.34 views

Oracle Coherence Unauthorized Access (Oct 2022 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by an unauthorized access vulnerability as referenced in the Oct 2022 CPU advisory. This easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

5.5CVSS7.2AI score0.01044EPSS
Exploits1References3
bdu_fstec
bdu_fstec
added 2022/09/05 12:0 a.m.10 views

The vulnerability of the Core component of the Oracle Coherence data processing software platform allows a hacker to trigger a service failure.

The vulnerability of the Core component of the Oracle Coherence data processing software exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures using the specially crafted T3 network protocol...

7.8CVSS6.6AI score0.0081EPSS
Exploits0References3Affected Software1
nessus
nessus
added 2022/07/22 12:0 a.m.160 views

Oracle Coherence (Jul 2022 CPU)

The 3.7.1.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2022 CPU advisory. - Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core. Supported...

7.5CVSS6.8AI score0.0486EPSS
Exploits1References4
attackerkb
attackerkb
added 2022/07/19 10:15 p.m.5 views

CVE-2022-21570

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 3.7.1.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracl...

7.5CVSS6.7AI score0.0081EPSS
Exploits0References2Affected Software1
prion
prion
added 2022/07/19 10:15 p.m.17 views

Design/Logic Flaw

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 3.7.1.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracl...

5CVSS7.3AI score0.0081EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2022/07/19 9:8 p.m.27 views

CVE-2022-21570

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 3.7.1.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracl...

7.5CVSS7.5AI score0.0081EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2022/07/19 9:8 p.m.11 views

CVE-2022-21570

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 3.7.1.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracl...

7.5CVSS6.6AI score0.0081EPSS
Exploits0References1
cnnvd
cnnvd
added 2022/07/19 12:0 a.m.6 views

Oracle Fusion Middleware 输入验证错误漏洞

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle USA. The platform provides middleware, software collections and other features. An input validation error vulnerability exists in Oracle Fusion Middleware'...

7.5CVSS6.8AI score0.0081EPSS
Exploits0References4
bdu_fstec
bdu_fstec
added 2022/06/23 12:0 a.m.6 views

The vulnerability of the Core component of the Oracle Coherence data processing software allows a hacker to execute arbitrary code.

The vulnerability of the Core component of the Oracle Coherence software platform exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, using the specially crafted T3 network protocol...

9.3CVSS8.2AI score0.01561EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/06/23 12:0 a.m.8 views

The vulnerability of the Core component of the Oracle Coherence data processing software allows a hacker to cause the device to freeze or experience service failure.

The vulnerability of the Core component of the Oracle Coherence data processing software exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause the device to become unresponsive or to fail in service through the specially crafted T3...

7.8CVSS7.5AI score0.01174EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/06/09 12:0 a.m.6 views

The vulnerability of the Core component of the Oracle Coherence data processing software allows a hacker to cause the device to freeze or experience service failure.

The vulnerability of the Core component of the Oracle Coherence data processing software exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause the device to become unresponsive or to fail in service...

7.8CVSS7.5AI score0.01395EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/05/11 12:0 a.m.10 views

The vulnerability of the Core component of the Oracle Coherence data processing software allows a hacker to execute arbitrary code.

The vulnerability of the Core component of the Oracle Coherence data processing software exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS7.5AI score0.01445EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder