CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2017/10/18 12:0 a.m.•1 views

Unspecified Vulnerability in Oracle Hospitality Reporting and Analytics

Oracle Hospitality Applications is a suite of business applications, servers, and storage solutions for hotel management from Oracle Corporation. The solution provides human resources cost management, provide customer service throughout the journey tracking management to improve customer...

10CVSS8.8AI score0.01652EPSS

CNVD•added 2017/10/18 12:0 a.m.•2 views

Oracle MySQL Connector/Net Subcomponent Denial of Service Vulnerability

Oracle MySQL is an open source relational database management system from Oracle Corporation. The database system is characterized by high performance, low cost, good reliability, etc. MySQL Connectors is one of the drivers to connect applications that use MySQL. A security vulnerability exists i...

5.3CVSS5AI score0.01706EPSS

CNVD•added 2017/10/18 12:0 a.m.•1 views

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2017-32209)

4.9CVSS5.3AI score0.00355EPSS

CNVD•added 2017/10/18 12:0 a.m.•3 views

Unspecified Vulnerability in Oracle WebLogic Server (CNVD-2017-31501)

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platform for enterprise and cloud environments from Oracle. The platform provides middleware, software collection, etc. Oracle WebLogic Server is one of the application server components for cloud and traditional...

9.9CVSS8.6AI score0.27739EPSS

CNVD•added 2017/10/18 12:0 a.m.•3 views

Oracle Java SE Java Advanced Management Console Sever Subcomponent Denial of Service Vulnerability

Oracle Java SE is Oracle's suite of standard edition Java platforms for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. java Advanced Management Console is one of the Java Advanced Management Console components for creating...

5.3CVSS5.4AI score0.01859EPSS

CNVD•added 2017/10/18 12:0 a.m.•4 views

Unspecified Vulnerability in Oracle WebLogic Server (CNVD-2017-31499)

7.5CVSS8.7AI score0.94439EPSS

Exploits45References1

BDU FSTEC•added 2017/10/11 12:0 a.m.•4 views

The vulnerability of the HTTP/2 module of the Apache Traffic Server allows attackers to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the HTTP/2 module in the Apache Traffic Server exists due to improper handling of HTTP/2 requests. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of data...

10CVSS7.8AI score0.01885EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2017/10/11 12:0 a.m.•4 views

The vulnerability of the HTTP/2 module of the Apache Traffic Server allows attackers to compromise the confidentiality, integrity, and accessibility of data.

10CVSS7.8AI score0.01903EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2017/10/03 12:0 a.m.•3 views

PT-2017-3586 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.13.6 Description: A use-after-free flaw was found in fs/userfaultfd.c in the Linux kernel. The issue is related to the handling of fork failure when dealing with event messages. Failure to fork correctly can...

10CVSS7.4AI score0.89595EPSS

Exploits48References117

10CVSS7.8AI score0.00106EPSS

The vulnerability of the Android CAF-release operating system’s supervisor allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Android CAF-release operating system’s supervisor is caused by a numerical overflow condition. Exploiting this vulnerability allows an attacker, operating remotely, to compromise the confidentiality, integrity, and accessibility of the protected information...

Exploits0References3

BDU FSTEC•added 2017/09/01 12:0 a.m.•4 views

The vulnerability of the Inter-RAT process in the Android CAF-release operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Inter-RAT process in the Android CAF-release operating system is caused by buffer overflow. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS8.3AI score0.0031EPSS

10CVSS7.7AI score0.00287EPSS

The vulnerability of the Android operating system from the CAF repository exists due to deficiencies in access control to the file system. This vulnerability allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Linux operating system Android from the CAF repository is related to deficiencies in access control to the file system. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information...

10CVSS7.8AI score0.00337EPSS

The vulnerability in the IMS multimedia message transmission subsystem of the RCS standard in the Android CAF-release operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in the IMS multimedia message transmission subsystem of the RCS standard in the Android operating system’s CAF builds is related to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and...

BDU FSTEC•added 2017/09/01 12:0 a.m.•3 views

The vulnerability of the system call in the TrustZone of the Android CAF-release operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TrustZone system call in the Android CAF-release operating system arises from the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS8.2AI score0.00106EPSS

Exploits0References3

10CVSS7.7AI score0.00253EPSS

The vulnerability of the Android CAF-release operating system, related to access control deficiencies, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Android CAF-release operating system is related to access control deficiencies. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information by sending UE identifier IMEI or IMEISV to the...

CNVD•added 2017/08/10 12:0 a.m.•1 views

Unspecified Vulnerability in Oracle Java SE and Java SE Embedded (CNVD-2017-28399)

Oracle Java SE and Java SE Embedded are both products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, as well as embedded devices and real-time environments; Java SE Embedded is a Java platform for the developmen...

9.6CVSS7.4AI score0.00247EPSS

CNVD•added 2017/08/10 12:0 a.m.•1 views

Unspecified Vulnerability in Oracle Java SE and Java SE Embedded (CNVD-2017-28402)

9.6CVSS7.4AI score0.00259EPSS

CNVD•added 2017/08/10 12:0 a.m.•2 views

Oracle Java SE Remote Vulnerability (CNVD-2017-21148)

Oracle Java SE is the United States Oracle Oracle company's set of standard version of the Java platform for the development and deployment of desktop, server, and embedded devices and real-time environments in the Java application. A security vulnerability exists in the ImageIO subcomponent of t...

9.6CVSS6.7AI score0.00247EPSS