Lucene search
K

381 matches found

OSV
OSV
added 2020/01/15 5:15 p.m.2 views

CVE-2020-2678

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

6.4CVSS6.9AI score0.00395EPSS
Exploits0References3
OSV
OSV
added 2020/01/15 5:15 p.m.3 views

CVE-2020-2656

Vulnerability in the Oracle Solaris product of Oracle Systems component: X Window System. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris...

4.4CVSS6.1AI score0.0056EPSS
Exploits2References5
Vulnrichment
Vulnrichment
added 2020/01/15 4:34 p.m.4 views

CVE-2020-2602

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Tree Manager. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...

6.1CVSS5.4AI score0.01162EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 6:15 p.m.4 views

CVE-2019-2942

Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

8.2CVSS7.3AI score0.01412EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 6:15 p.m.5 views

CVE-2019-2901

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

7.3CVSS7.1AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/08/06 12:30 p.m.4 views

gvfs: Incorrect authorization in admin backend allows privileged users to read and modify arbitrary files without prompting for password

An incorrect permission check in the admin backend in gvfs was found that allows reading and modify arbitrary files by privileged users without asking for password when no authentication agent is running. This vulnerability can be exploited by malicious programs running under privileges of users...

7CVSS5.8AI score0.00368EPSS
Exploits0References4
OSV
OSV
added 2019/07/23 11:15 p.m.5 views

CVE-2019-2853

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware subcomponent: Outside In Filters. The supported version that is affected is 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

7.3CVSS6.8AI score0.01154EPSS
Exploits0References2
OSV
OSV
added 2019/07/23 11:15 p.m.3 views

DEBIAN-CVE-2019-2816

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker with network access v...

4.8CVSS7AI score0.02286EPSS
Exploits0References1
OSV
OSV
added 2019/07/23 11:15 p.m.4 views

CVE-2019-2767

Vulnerability in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. The supported version that is affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

7.2CVSS7.1AI score0.05238EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/22 12:0 a.m.4 views

IBM QRadar SIEM Unauthorized Access Vulnerability (CNVD-2019-26399)

IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. An unauthorized...

8.1CVSS6.4AI score0.00681EPSS
Exploits0References1
OSV
OSV
added 2019/04/23 7:32 p.m.4 views

CVE-2019-2655

Vulnerability in the Oracle Interaction Center Intelligence component of Oracle E-Business Suite subcomponent: Business Intelligence OLTP. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

8.2CVSS7.3AI score0.01287EPSS
Exploits0References1
OSV
OSV
added 2019/04/23 7:32 p.m.5 views

CVE-2019-2629

Vulnerability in the Oracle Health Sciences Data Management Workbench component of Oracle Health Sciences Applications subcomponent: User Interface. The supported version that is affected is 2.4.8. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

5.4CVSS6.3AI score0.00902EPSS
Exploits0References1
OSV
OSV
added 2019/04/23 7:32 p.m.3 views

CVE-2018-3312

Vulnerability in the Oracle Retail Customer Engagement component of Oracle Retail Applications subcomponent: Segment. Supported versions that are affected are 16.0 and 17.0. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Retail...

5.5CVSS5.8AI score0.00875EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/01/23 12:0 a.m.13 views

The vulnerability of the Samba networking communication software lies in the lack of requirements for signing and encrypting SMB traffic when using DFS redirection. This allows a attacker to execute a “man-in-the-middle” attack.

The vulnerability of the Samba networking communication package is related to the lack of requirements for signing and encrypting SMB traffic when using DFS redirection. Exploiting this vulnerability allows a remote attacker to execute a “man-in-the-middle” attack and gain access to read and modi...

7.4CVSS6.6AI score0.04595EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2019/01/16 7:30 p.m.4 views

CVE-2019-2413

Vulnerability in the Oracle Reports Developer component of Oracle Fusion Middleware subcomponent: Valid Session. The supported version that is affected is 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Reports Developer...

6.1CVSS6.6AI score
Exploits0References3
OSV
OSV
added 2019/01/16 7:30 p.m.4 views

CVE-2019-2423

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: PIA Search. Supported versions that are affected are 8.55, 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

6.1CVSS6.6AI score0.01123EPSS
Exploits1References2
CNVD
CNVD
added 2018/10/10 12:0 a.m.10 views

Unspecified Vulnerability in IBM Security Key Lifecycle Manager

IBM Security Key Lifecycle Manager formerly known as Tivoli Key Lifecycle Manager is a set of key lifecycle management software from IBM in the United States. The software provides key storage, key maintenance and key lifecycle management for storage devices. A security vulnerability exists in IB...

8.1CVSS6.3AI score0.00675EPSS
Exploits0References1
CNVD
CNVD
added 2018/10/10 12:0 a.m.4 views

SIEMENS SIMATIC S7-1200 CPU Family Cross-Site Request Forgery Vulnerability

The SIEMENS SIMATIC S7-1200 CPU Family is designed for discrete and continuous control in industrial environments such as manufacturing, food and beverage and the global chemical industry. A cross-site request forgery vulnerability exists in the SIEMENS SIMATIC S7-1200 CPU Family. This allows an...

7.3CVSS7.3AI score0.00626EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/25 12:0 a.m.4 views

Oracle Fusion Middleware BI Publisher Component Access Control Error Vulnerability (CNVD-2019-39893)

Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's Oracle business innovation platform for enterprise and cloud environments, which provides middleware, software collections, etc. BI Publisher formerly known as XML Publisher is one of the reporting components. An access contro...

8.2CVSS8.1AI score0.02094EPSS
Exploits0References1
OSV
OSV
added 2018/07/18 1:29 p.m.3 views

ALPINE-CVE-2018-3066

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Options. Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior and 5.7.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocol...

3.3CVSS4.5AI score0.01933EPSS
Exploits0References1
Rows per page
Query Builder