Lucene search
K

199 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.8 views

Azure Linux 3.0 Security Update: mysql (CVE-2024-20963)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-20963 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported...

6.5CVSS6.3AI score0.01104EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 3: java-11-konajdk (TSSA-2022:0169)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0169 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

5.3CVSS6.2AI score0.02376EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/22 4:21 p.m.10 views

CVE-2020-14655

Vulnerability in the Oracle Security Service product of Oracle Fusion Middleware component: SSL API. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracl...

6.5CVSS6.6AI score0.01081EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:20 p.m.8 views

CVE-2020-14530

Vulnerability in the Oracle Security Service product of Oracle Fusion Middleware component: None. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Security Service. Successfu...

5.9CVSS6.2AI score0.01288EPSS
Exploits0
Oracle
Oracle
added 2025/04/15 12:0 a.m.94 views

Oracle Critical Patch Update Advisory - April 2025

A Critical Patch Update is a collection of patches for multiple security vulnerabilities. These patches address vulnerabilities in Oracle code and in third party components included in Oracle products. These patches are usually cumulative, but each advisory describes only the security patches add...

10CVSS7.5AI score0.99999EPSS
Exploits239Affected Software122
OSV
OSV
added 2024/09/13 10:37 a.m.18 views

RHSA-2015:1242 Red Hat Security Advisory: java-1.7.0-oracle security update

Bulletin has no description...

3.7CVSS7.3AI score0.9986EPSS
Exploits1References102
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.181 views

Oracle DB SQL Injection Via SYS.LT.COMPRESSWORKSPACE

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.LT.COMPRESSWORKSPACE', 'Description' = %q This module exploits an sql injection flaw in the COMPRESSWORKSPACE...

5.5CVSS7AI score0.1143EPSS
Exploits3
NCSC
NCSC
added 2024/04/18 12:0 a.m.11 views

Vulnerabilities fixed in Oracle Hyperion

Oracle has fixed vulnerabilities in several Hyperion products. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can result in the following categories of damage: Denial-of-Service DoS. Remote code execution Administrator/Root privileges Access to sensitive...

8.4CVSS7.3AI score0.81422EPSS
Exploits36
OpenVAS
OpenVAS
added 2024/04/18 12:0 a.m.18 views

Oracle MySQL Server 8.x <= 8.0.34, 8.1.x <= 8.3.0 Security Update (cpuapr2024) - Linux

Oracle MySQL Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.5CVSS5AI score0.00838EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/01/17 12:0 a.m.27 views

Oracle MySQL Server 8.x <= 8.0.34, 8.1.0 Security Update (cpujan2024) - Windows

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

8.8CVSS6.5AI score0.02107EPSS
Exploits0References2
NCSC
NCSC
added 2023/10/19 12:0 a.m.9 views

Vulnerabilities fixed in Oracle Hyperion

Vulnerabilities have been fixed in Oracle Hyperion products. A malicious party can exploit the vulnerabilities to gain full control to the Oracle Hyperion infrastructure. ------------------.------.------------------------------------- | CVE-ID | CVSS | Vector |...

9.8CVSS8.5AI score0.8377EPSS
Exploits6
Positive Technologies
Positive Technologies
added 2023/10/17 12:0 a.m.5 views

PT-2023-6387 · Oracle +6 · Mysql Server +5

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.33 and prior Description: The issue is related to a vulnerability in the MySQL Server product of Oracle MySQL, specifically in the Server: Security: Encryption component. This vulnerability allows a high privileged...

9.8CVSS5.5AI score0.78483EPSS
Exploits10References623
Code423n4
Code423n4
added 2022/12/20 12:0 a.m.13 views

Insufficient Timestamp Validation for Signed Messages

Lines of code Vulnerability details Impact A message can be signed by the oracle for any future point in time, and it will be valid for 20 minutes. If messages with invalid timestamps pointing to the future get signed, there is no way of invalidating them. A compromised or malfunctioning oracle...

6.7AI score
Exploits0
OpenVAS
OpenVAS
added 2022/10/19 12:0 a.m.28 views

Oracle VirtualBox 6.1.x < 6.1.40 Security Update (cpuoct2022) - Mac OS X

Oracle VirtualBox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:vmvirtualbox";...

8.8CVSS6.5AI score0.01635EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/08/03 12:0 a.m.3 views

PT-2022-37513 · Oracle · Oracleasm

Name of the Vulnerable Software and Affected Versions: oracleasm affected versions not specified Description: The issue is related to the grub2 boothole 3 problem, which necessitates a rebuild with a new secure boot key. Recommendations: At the moment, there is no information about a newer versio...

6.8AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/02 3:13 a.m.57 views

Apache XML Security For Java vulnerable to authentication bypass by HMAC truncation

The design of the W3C XML Signature Syntax and Processing XMLDsig recommendation, as implemented in multiple products. The Apache XML Security Java is affected by the vulnerability published in US-Cert VU 466161. See: http://www.kb.cert.org/vuls/id/466161 for more information. This bug can allow ...

5CVSS0.5AI score0.06348EPSS
Exploits0References29Affected Software1
Wired Threat Level
Wired Threat Level
added 2022/04/29 11:0 a.m.14 views

You Need to Update iOS, Android, and Chrome Right Now

Plus: Microsoft patched some 100 flaws, while Oracle issued more than 500 security fixes...

1.4AI score
Exploits0
NCSC
NCSC
added 2022/04/20 12:0 a.m.7 views

Vulnerabilities fixed in Oracle Virtualization

Oracle has fixed vulnerabilities in Secure Global Desktop and VirtualBox. The vulnerabilities allow a malicious party to perform attacks execute attacks that result in the following categories of damage: Server-side request forgery Denial-of-Service DoS. Manipulation of data Access to system data...

9CVSS9.5AI score0.99999EPSS
Exploits5
OpenVAS
OpenVAS
added 2021/07/28 12:0 a.m.20 views

Oracle Java SE Security Update (jul2021) 03 - Windows

This host is missing a security update according to Oracle. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.9AI score0.03701EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/20 12:0 a.m.3 views

Oracle WebLogic Server 安全漏洞

Oracle WebLogic Server is a cloud-native, enterprise-grade Java platform application server for multi-tier distributed enterprise application development and deployment. A security vulnerability exists in the Core component of Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0,...

5.3CVSS5.7AI score0.01367EPSS
Exploits1References5
Rows per page
Query Builder