UBUNTU-CVE-2022-21488

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.34. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

CVE-2022-21474

Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications component: Infrastructure. The supported version that is affected is 14.5. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Bankin...

CVE-2022-21449

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 17.0.2 and 18; Oracle GraalVM Enterprise Edition: 21.3.1 and 22.0.0.2. Easily exploitable vulnerability allows...

CVE-2022-21449

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 17.0.2 and 18; Oracle GraalVM Enterprise Edition: 21.3.1 and 22.0.0.2. Easily exploitable vulnerability allows...

Oracle Transportation Management 输入验证错误漏洞

Oracle Transportation Management Otm is a tool for shippers and logistics providers from Oracle. It is used to provide transportation planning and execution capabilities and to integrate transportation planning, execution, freight payment, and business process automation into a single application...

PT-2022-2434

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 7u331, 8u321, 11.0.14, 17.0.2, 18 Oracle GraalVM Enterprise Edition versions 20.3.5, 21.3.1, 22.0.0.2 Description The issue is related to insufficient input validation in the Libraries component of Oracle Java SE and...

Oracle E-Business Suite 输入验证错误漏洞

Oracle E-Business Suite E-Business Suite is a fully integrated set of global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management, etc. Payments is one of the payment management components.Scripting is on...

Oracle PeopleSoft Products产品输入验证错误漏洞

Oracle PeopleSoft Products is a set of enterprise human capital management solutions from Oracle Oracle. The product provides human capital management, financial management, supplier relationship management and other functions. An Access Control Error vulnerability exists in Oracle PeopleSoft...

Oracle Financial Services Applications 输入验证错误漏洞

Oracle Financial Services Applications and Oracle Banking Payments are both products of Oracle Corporation Oracle.Oracle Financial Services Applications is a suite of financial services software. The product includes core banking, online banking and property management, etc. Oracle Banking Paymen...

PT-2022-3108 · Oracle · Oracle Banking Payments

Name of the Vulnerable Software and Affected Versions: Oracle Banking Payments versions 14.5 Description: The issue is related to incorrect permission assignment for a critical resource in the Infrastructure component of Oracle Banking Payments. This can be exploited by a remote attacker to creat...

PT-2022-2420 · Oracle +8 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.28 and prior Description: A difficult to exploit vulnerability in the MySQL Server product allows a highly privileged attacker with network access via multiple protocols to compromise the server. Successful attacks c...

The vulnerability of the Oracle Communications Convergence component of the Oracle Communications Applications network management and organization software package allows a hacker to gain access to, modify, add, or delete data.

The vulnerability of the Oracle Communications Convergence software component for network management and organization applications exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to remotely gain access to modify, add, or delete dat...

Oracle Financial Services Applications 输入验证错误漏洞

Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The product includes core banking, online banking, and property management. An input validation error vulnerability exists in Oracle Financial Services Applications that could allow a low-privileged...

Oracle Financial Services Applications 输入验证错误漏洞

Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The products include core banking, online banking, and estate management.FLEXCUBE Universal Banking is one of the Internet and mobile banking solution components. A security vulnerability exists in...

Oracle JD Edwards Products输入验证错误漏洞

Oracle JD Edwards Products is a fully integrated suite of enterprise resource planning applications ERP from Oracle Corporation USA. A security vulnerability exists in Oracle JD Edwards Products that could result in unauthorized update, insert, or delete access to certain JD Edwards EnterpriseOne...

Oracle Fusion Middleware 缓冲区错误漏洞

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle USA. The platform provides middleware, software collections, and other capabilities. A buffer error vulnerability exists in Oracle Fusion Middleware's Orac...

Oracle Virtualization 输入验证错误漏洞

Oracle Virtualization and Oracle VM VirtualBox are both products of Oracle Corporation. Oracle VM VirtualBox is a virtual machine management software for Oracle Virtualization. VirtualBox is vulnerable to an input validation error that allows a low privilege attacker to log into the infrastructur...

Oracle MySQL 输入验证错误漏洞

Oracle MySQL is an open source relational database management system from Oracle Corporation. MySQL Server is one of the database server components. Oracle MySQL Server Component: Server: DDL 8.0.28 and earlier versions are vulnerable to an input validation error. An unauthenticated attacker coul...

CVE-2020-25163

A remote attacker with write access to PI ProcessBook files could inject code that is imported into OSIsoft PI Vision 2020 versions prior to 3.5.0. Unauthorized information disclosure, modification, or deletion is also possible if a victim views or interacts with the infected display. This...

PT-2022-13802 · WordPress · Elementor Website Builder

Name of the Vulnerable Software and Affected Versions: Elementor Website Builder plugin for WordPress versions 3.6.0 through 3.6.2 Description: The Elementor Website Builder plugin for WordPress is vulnerable to unauthorized execution of several AJAX actions due to a missing capability check in t...