Lucene search
+L

205 matches found

cnnvd
cnnvd
added 2022/04/19 12:0 a.m.7 views

Oracle Financial Services Applications 输入验证错误漏洞

Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The products include core banking, online banking, and estate management.FLEXCUBE Universal Banking is one of the Internet and mobile banking solution components. A security vulnerability exists in...

5.9CVSS7AI score0.00609EPSS
Exploits0References4
mscve
mscve
added 2022/01/25 8:0 a.m.4 views

Vulnerability in the Oracle Java SE Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321 8u311 11.0.13 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update insert or delete access to some of Oracle Java SE Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments typically in clients running sandboxed Java Web Start applications or sandboxed Java applets that load and run untrusted code (e.g. code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component e.g. through a web service which supplies data to

...

5.3CVSS6.3AI score0.02896EPSS
Exploits0
redhat
redhat
added 2022/01/24 9:49 a.m.6 views

OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to exploit vulnerabili...

4.3CVSS7.4AI score0.03763EPSS
Exploits0References4
osv
osv
added 2022/01/19 12:15 p.m.8 views

AZL-7694 CVE-2022-21278 affecting package mysql for versions less than 8.0.28-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

7.1CVSS5.7AI score0.01197EPSS
Exploits0References1
cnnvd
cnnvd
added 2022/01/19 12:0 a.m.6 views

Oracle Construction and Engineering Suite 安全漏洞

Oracle Construction and Engineering Suite is a portfolio management solution suite product for construction projects from Oracle Corporation. A security vulnerability exists in Oracle Construction and Engineering Suite's Primavera Portfolio Management product that could allow an attacker with...

4.9CVSS6.6AI score0.00498EPSS
Exploits0References3
cnnvd
cnnvd
added 2022/01/18 12:0 a.m.5 views

Oracle Java SE和Oracle GraalVM 输入验证错误漏洞

Oracle Java SE, an Oracle company, is used to develop and deploy Java applications on desktops, servers, and embedded devices and in real-time environments. Edition accessible data for unauthorized update, insert, or delete access...

5.3CVSS5.5AI score0.02755EPSS
Exploits0References52
osv
osv
added 2021/10/20 11:17 a.m.5 views

AZL-6712 CVE-2021-35610 affecting package mysql for versions less than 8.0.28-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

7.1CVSS6.7AI score0.02192EPSS
Exploits0References1
redhat
redhat
added 2021/10/12 2:17 p.m.5 views

mysql: Server: Replication unspecified vulnerability (CPU Jul 2021)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Replication. Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MyS...

5CVSS7.2AI score0.0187EPSS
Exploits0References4
osv
osv
added 2021/07/21 3:15 p.m.11 views

AZL-6697 CVE-2021-2356 affecting package mysql for versions less than 8.0.28-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Replication. Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQ...

5.9CVSS6.7AI score0.01879EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2021/05/12 12:0 a.m.6 views

The vulnerability of the Marketing Administration component of the Oracle Marketing marketing platform allows a hacker to gain access to modify, add, or delete data, or to gain full control over the application.

The vulnerability of Oracle Marketing’s Marketing Administration component is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain access to modify, add, or delete data, or to gain full control over the application using the HTTP protocol...

9.4CVSS6.8AI score0.01548EPSS
Exploits3References3Affected Software1
osv
osv
added 2021/04/22 10:15 p.m.4 views

CVE-2021-2140

Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications component: Rules Framework. Supported versions that are affected are 8.0.6-8.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network...

6.1CVSS6.9AI score0.00853EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/04/20 12:0 a.m.7 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is a seamless integration of a management suite.Oracle Universal...

8.1CVSS5.6AI score0.00931EPSS
Exploits0References3
cnnvd
cnnvd
added 2021/04/20 12:0 a.m.5 views

Oracle Solaris 安全漏洞

Oracle Solaris is a UNIX operating system from Oracle. Oracle Solaris Kernel 11 contains a security vulnerability that can be exploited by an attacker to compromise Oracle Solaris by logging on to the infrastructure that executes Oracle Solaris. resulting in the unauthorized ability to cause Orac...

6.1CVSS5.7AI score0.0026EPSS
Exploits0References5
cnnvd
cnnvd
added 2021/04/20 12:0 a.m.6 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is a seamless integration of a management suite.Oracle Landed Cos...

8.1CVSS5.7AI score0.00931EPSS
Exploits0References3
cnnvd
cnnvd
added 2021/04/20 12:0 a.m.4 views

Oracle E-Business Suite Oracle Customers Online 安全漏洞

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is a seamless integration of a management suite. Oracle Customers...

8.1CVSS5.7AI score0.01015EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2021/02/02 12:0 a.m.5 views

The vulnerability of the Oracle Application Express Opportunity Tracker application, related to deficiencies in access control, allows an attacker to gain access to modify, add, or delete data.

The vulnerability of the Oracle Application Express Opportunity Tracker sales management application is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain access to modify, add, or delete data using the HTTP protocol...

5.4CVSS6.6AI score0.0069EPSS
Exploits0References2Affected Software1
redhat
redhat
added 2020/11/30 1:47 p.m.3 views

mysql: InnoDB unspecified vulnerability (CPU Jul 2019)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

5.5CVSS7.3AI score0.03061EPSS
Exploits0References5
osv
osv
added 2020/10/21 3:15 p.m.6 views

CVE-2020-14802

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: PIA Core Technology. Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

6.1CVSS7.2AI score0.00912EPSS
Exploits0References1
osv
osv
added 2020/10/21 3:15 p.m.3 views

UBUNTU-CVE-2020-14853

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: NDBCluster Plugin. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster...

4.6CVSS6.7AI score0.00934EPSS
Exploits0References4
redhat
redhat
added 2020/09/15 4:18 p.m.6 views

mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.017 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS7.3AI score0.02466EPSS
Exploits0References5
Rows per page
Query Builder