Lucene search
+L

335 matches found

cisa
cisa
added 2023/04/21 12:0 p.m.3 views

Oracle Releases Security Updates

Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for April 2023 to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages user...

7.5AI score
Exploits0References3
susecve
susecve
added 2023/02/15 4:52 a.m.6 views

SUSE CVE-2017-3289

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols...

9.6CVSS9.6AI score0.02483EPSS
Exploits1References12
susecve
susecve
added 2023/02/15 4:44 a.m.6 views

SUSE CVE-2017-10089

Vulnerability in the Java SE component of Oracle Java SE subcomponent: ImageIO. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

9.6CVSS9.3AI score0.02415EPSS
Exploits0References10
susecve
susecve
added 2023/02/15 4:44 a.m.5 views

SUSE CVE-2017-10087

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

9.6CVSS9.3AI score0.02555EPSS
Exploits0References10
susecve
susecve
added 2023/02/15 4:44 a.m.3 views

SUSE CVE-2017-10101

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: JAXP. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

9.6CVSS9.3AI score0.02555EPSS
Exploits0References10
susecve
susecve
added 2023/02/15 4:44 a.m.4 views

SUSE CVE-2017-10107

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: RMI. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

9.6CVSS9.3AI score0.02555EPSS
Exploits0References10
susecve
susecve
added 2023/02/15 4:44 a.m.6 views

SUSE CVE-2017-10110

Vulnerability in the Java SE component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attac...

9.6CVSS9.3AI score0.02415EPSS
Exploits0References10
susecve
susecve
added 2023/02/15 4:44 a.m.5 views

SUSE CVE-2017-10111

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. The supported version that is affected is Java SE: 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to...

9.6CVSS8.9AI score0.02132EPSS
Exploits0References10
susecve
susecve
added 2023/02/15 4:34 a.m.5 views

SUSE CVE-2018-2633

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker...

8.3CVSS6.8AI score0.0565EPSS
Exploits0References13
susecve
susecve
added 2023/02/15 4:33 a.m.2 views

SUSE CVE-2018-2938

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Java DB. Supported versions that are affected are Java SE: 6u191, 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. While the...

9CVSS7.6AI score0.01944EPSS
Exploits0References12
susecve
susecve
added 2023/02/15 4:33 a.m.6 views

SUSE CVE-2018-2942

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Windows DLL. Supported versions that are affected are Java SE: 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

8.3CVSS9.5AI score0.01835EPSS
Exploits0References3
susecve
susecve
added 2023/02/15 4:33 a.m.5 views

SUSE CVE-2018-3149

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...

8.3CVSS7AI score0.07215EPSS
Exploits2References24
susecve
susecve
added 2023/02/15 4:33 a.m.4 views

SUSE CVE-2018-3183

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Scripting. Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with network...

9CVSS7.4AI score0.02815EPSS
Exploits0References18
susecve
susecve
added 2023/02/15 4:18 a.m.5 views

SUSE CVE-2019-2698

Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

8.1CVSS7.2AI score0.12013EPSS
Exploits1References17
susecve
susecve
added 2023/02/15 4:3 a.m.5 views

SUSE CVE-2020-2604

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

8.1CVSS8AI score0.04903EPSS
Exploits0References17
susecve
susecve
added 2023/02/15 3:23 a.m.3 views

SUSE CVE-2022-39426

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with network access via VRDP to compromise Oracle VM VirtualBox. Successful...

8.1CVSS6.8AI score0.01136EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2023/01/27 12:0 a.m.11 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain full control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software lies in insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain full control over the application remotely...

8.1CVSS6.7AI score0.01205EPSS
Exploits0References2Affected Software1
osv
osv
added 2023/01/18 12:15 a.m.2 views

CVE-2023-21886

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Orac...

8.1CVSS6.9AI score0.01205EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2023/01/17 12:0 a.m.7 views

PT-2023-1181 · Oracle +2 · Virtualbox +2

Name of the Vulnerable Software and Affected Versions: Oracle VM VirtualBox versions prior to 6.1.42 Oracle VM VirtualBox versions prior to 7.0.6 Description: The issue is related to insufficient input validation in the Core component of Oracle VM VirtualBox, allowing an unauthenticated attacker...

9.8CVSS5.7AI score0.02167EPSS
Exploits1References160
attackerkb
attackerkb
added 2022/10/18 9:15 p.m.3 views

CVE-2022-39428

Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Upload. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Web...

9.8CVSS5.8AI score0.36455EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder