Lucene search
K

226 matches found

OSV
OSV
added 2024/07/16 11:15 p.m.6 views

CVE-2024-21155

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: User Interface. The supported version that is affected is 8.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit...

4.7CVSS7.2AI score0.00384EPSS
Exploits0References1
CVE
CVE
added 2024/07/16 10:40 p.m.64 views

CVE-2024-21155

Oracle ZFS Storage Appliance Kit (Oracle) UI vulnerability (CVE-2024-21155) affects version 8.8. Root cause is insufficient input validation in the User Interface. An unauthenticated attacker with network access via HTTP can read data from the UI, with human interaction required for exploitation....

4.7CVSS3.6AI score0.00384EPSS
Exploits0References1Affected Software1
NCSC
NCSC
added 2024/04/19 12:0 a.m.10 views

Vulnerabilities fixed in Oracle Systems

Oracle has fixed vulnerabilities in components of System Software. A malicious person with physical access to the hardware, or local access to the infrastructure, can exploit the vulnerabilities to exploit attacks that could result in the following categories of damage: Cross-Site Scripting XSS...

9.8CVSS6.6AI score0.46836EPSS
Exploits12
OSV
OSV
added 2024/04/16 10:15 p.m.9 views

CVE-2024-21104

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...

6.5CVSS7.1AI score0.0022EPSS
Exploits0References1
NVD
NVD
added 2024/04/16 10:15 p.m.24 views

CVE-2024-21104

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...

6.5CVSS6.3AI score0.0022EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/16 12:0 a.m.6 views

Oracle ZFS Storage Appliance 安全漏洞

Oracle ZFS Storage Appliance is a flash-enabled, petabyte-scale file storage with built-in Oracle database from Oracle Corporation USA. A security vulnerability exists in Oracle Systems' Oracle ZFS Storage Appliance Kit. An attacker could exploit the vulnerability to cause the Oracle ZFS Storage...

6.5CVSS7.2AI score0.0022EPSS
Exploits0References2
Prion
Prion
added 2024/02/17 2:15 a.m.17 views

Design/Logic Flaw

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Object Store. The supported version that is affected is 8.8. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit...

4CVSS5.4AI score0.00375EPSS
Exploits0References1
CVE
CVE
added 2024/02/17 1:48 a.m.75 views

CVE-2023-21833

The CVE-2023-21833 entry affects Oracle ZFS Storage Appliance Kit (Object Store) version 8.8. The vulnerability allows a low-privilege, network-access attacker (HTTP) to read a subset of data. CVSS v3.1 base score 4.3 (Confidentiality impact: Low). Connected sources confirm the issue and indicate...

4.3CVSS3.7AI score0.00375EPSS
Exploits0References1Affected Software1
NCSC
NCSC
added 2024/01/18 12:0 a.m.5 views

Vulnerabilities fixed in Oracle Systems

Oracle has fixed vulnerabilities in components of System Software. A malicious person with physical access to the hardware, or local access to the infrastructure, can exploit the vulnerabilities to exploit attacks that could result in the following categories of damage: Denial-of-Service DoS...

9.8CVSS7.4AI score0.69899EPSS
Exploits1
NVD
NVD
added 2024/01/16 10:15 p.m.25 views

CVE-2024-20959

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...

4.4CVSS4.4AI score0.00184EPSS
Exploits0References1
OSV
OSV
added 2024/01/16 10:15 p.m.7 views

CVE-2024-20959

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...

4.4CVSS7.3AI score0.00184EPSS
Exploits0References1
NVD
NVD
added 2024/01/16 10:15 p.m.28 views

CVE-2024-20914

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...

2.3CVSS2.4AI score0.00188EPSS
Exploits0References1
Prion
Prion
added 2024/01/16 10:15 p.m.18 views

Design/Logic Flaw

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...

1.4CVSS5.1AI score0.00188EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2024/01/16 10:15 p.m.23 views

Design/Logic Flaw

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...

1.4CVSS6AI score0.00184EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/16 9:41 p.m.50 views

CVE-2024-20959

The CVE-2024-20959 entry concerns Oracle ZFS Storage Appliance Kit (Oracle Systems) with the Core component in version 8.8. The issue is caused by insufficient input validation, allowing a high-privileged attacker with local access to compromise the kit and potentially cause a hang or frequent cr...

4.4CVSS4.6AI score0.00184EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/16 9:41 p.m.60 views

CVE-2024-20914

The CVE-2024-20914 issue concerns Oracle ZFS Storage Appliance Kit 8.8. The vulnerability is linked to the Core component and stems from insufficient input validation, enabling a high-privilege attacker with local access to compromise the kit and gain unauthorized read access to a subset of data....

2.3CVSS3AI score0.00188EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.4 views

PT-2024-1335 · Oracle · Oracle Zfs Storage Appliance Kit

Name of the Vulnerable Software and Affected Versions: Oracle ZFS Storage Appliance Kit version 8.8 Description: The issue is related to insufficient input validation in the Core component of the Oracle ZFS Storage Appliance Kit. This easily exploitable vulnerability allows a low-privileged...

4.3CVSS7.3AI score0.00375EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.5 views

Oracle ZFS Storage Appliance Security Vulnerability

Oracle ZFS Storage Appliance is a flash-enabled, petabyte-scale file storage with built-in Oracle database from Oracle Corporation USA. A security vulnerability exists in Oracle Systems' Oracle ZFS Storage Appliance Kit version 8.8. An attacker could exploit the vulnerability to access sensitive...

2.3CVSS6.5AI score0.00188EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.5 views

PT-2024-1188 · Oracle · Oracle Zfs Storage Appliance Kit

Name of the Vulnerable Software and Affected Versions: Oracle ZFS Storage Appliance Kit version 8.8 Description: The issue is related to insufficient input validation in the Core component of the Oracle ZFS Storage Appliance Kit. This allows a high-privileged attacker with logon to the...

2.3CVSS3.8AI score0.00188EPSS
Exploits0References5
Prion
Prion
added 2023/10/17 10:15 p.m.15 views

Design/Logic Flaw

Vulnerability in the Sun ZFS Storage Appliance product of Oracle Systems component: Core. The supported version that is affected is 8.8.60. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Sun ZFS Storage Appliance. Successful attacks o...

2.6CVSS5.9AI score0.00474EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder