UBUNTU-CVE-2022-39399

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerabilit...

UBUNTU-CVE-2022-21619

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to...

UBUNTU-CVE-2022-21635

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

CVE-2022-21639

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Elastic Search Integration. Supported versions that are affected are 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

Oracle JD Edwards Products 跨站脚本漏洞

Oracle JD Edwards Products is a fully integrated suite of Enterprise Resource Planning ERP applications from Oracle. The products provide application modules for financial management, project management, and asset lifecycle management. A cross-site scripting vulnerability exists in Oracle JD...

CVE-2022-21635

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

Oracle PeopleSoft Enterprise PeopleTools 跨站脚本漏洞

Oracle PeopleSoft Enterprise PeopleTools is Oracle's technology for delivering PeopleSoft applications that are synchronized with users' needs and expectations. A cross-site scripting vulnerability exists in Oracle PeopleSoft Enterprise PeopleTools. An attacker could exploit the vulnerability to...

Oracle Transportation Management 安全漏洞

Oracle Transportation Management Otm is a tool for shippers and logistics providers from Oracle. It is used to provide transportation planning and execution functionality and to integrate transportation planning, execution, freight payment, and business process automation into a single applicatio...

CVE-2022-21624

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JNDI. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit...

CVE-2022-21598

Vulnerability in the Siebel Core - DB Deployment and Configuration product of Oracle Siebel CRM component: Repository Utilities. Supported versions that are affected are 22.8 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

CVE-2022-21612

Vulnerability in the Oracle Enterprise Data Quality product of Oracle Fusion Middleware component: Dashboard. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

CVE-2022-21623

Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Application Config Console. Supported versions that are affected are 13.4.0.0 and 13.5.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

CVE-2022-21622

Vulnerability in the Oracle SOA Suite product of Oracle Fusion Middleware component: Adapters. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle SOA Suite. Successf...

Oracle Fusion Middleware 安全漏洞

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle USA. The platform provides middleware, software collections, and other capabilities. A security vulnerability exists in Oracle Fusion Middleware versions...

PT-2022-5178 · Oracle · Oracle Database Server

Name of the Vulnerable Software and Affected Versions: Oracle Database Server version 19c Description: The issue exists due to insufficient protection of the web page structure in the Oracle Services for Microsoft Transaction Server component. This allows a remote attacker to potentially gain rea...

PT-2022-24959 · Oracle · Oracle Access Manager

Name of the Vulnerable Software and Affected Versions: Oracle Access Manager version 12.2.1.3.0 Description: The issue allows an unauthenticated attacker with network access via HTTP to compromise Oracle Access Manager. Successful attacks can result in unauthorized update, insert, or delete acces...

Oracle Enterprise Manager Base Platform 安全漏洞

Oracle Enterprise Manager Base Platform is a set of local management platform of Oracle Oracle. The platform is primarily used to manage Oracle product deployments. A security vulnerability exists in Oracle Enterprise Manager Base Platform. Network access via HTTP by an unauthenticated attacker...

Oracle JD Edwards EnterpriseOne Tools 安全漏洞

Oracle JD Edwards Products is a fully integrated suite of Enterprise Resource Planning ERP applications from Oracle. The products offer application modules for financial management, project management, and asset lifecycle management. A security vulnerability exists in Oracle JD Edwards' JD Edward...

Oracle Siebel CRM 安全漏洞

Oracle Siebel CRM is a set of customer relationship management solutions from Oracle Oracle. The solution includes modules for sales management, marketing management, customer service system, and call center. A security vulnerability exists in Siebel Core - DB Deployment and Configuration for...

PT-2022-24960 · Oracle · Peoplesoft Enterprise Common Components

Name of the Vulnerable Software and Affected Versions: PeopleSoft Enterprise Common Components version 9.2 Description: The issue allows a low-privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise Common Components. Successful attacks can result in unauthorized...