CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

8.8CVSS7.3AI score0.00557EPSS

CVE-2022-21392

Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Policy Framework. Supported versions that are affected are 13.4.0.0 and 13.5.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

6.1CVSS6.7AI score0.00946EPSS

CVE-2022-21386

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Web Container. Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

5.5CVSS6.5AI score0.01223EPSS

CVE-2022-21378

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

OSV•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21373

Vulnerability in the Oracle Partner Management product of Oracle E-Business Suite component: Reseller Locator. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Partner...

6.1CVSS7.3AI score0.00706EPSS

6.1CVSS6.7AI score0.00946EPSS

CVE-2022-21386

6.4CVSS6.9AI score0.0057EPSS

CVE-2022-21381

Vulnerability in the Oracle Enterprise Session Border Controller product of Oracle Communications component: WebUI. Supported versions that are affected are 8.4 and 9.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Enterprise...

OSV•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21377

Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering component: Web API. Supported versions that are affected are 18.0.0.0-18.0.3.0, 19.0.0.0-19.0.1.2 and 20.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access v...

5.4CVSS6.7AI score

ATTACKERKB•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21382

7.7CVSS7.2AI score0.00933EPSS

OSV•added 2022/01/19 12:15 p.m.•1 views

CVE-2022-21353

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogi...

6.5CVSS6.7AI score0.01222EPSS

5.9CVSS6.7AI score0.01296EPSS

CVE-2022-21352

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of...

ATTACKERKB•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21351

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

7.1CVSS6.7AI score0.0127EPSS

6.1CVSS6.8AI score0.00825EPSS

CVE-2022-21359

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Optimization Framework. Supported versions that are affected are 8.57, 8.58 and 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSo...

6.5CVSS6.8AI score0.03618EPSS

CVE-2022-21350

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise...

Exploits1References2Affected Software1

OSV•added 2022/01/19 12:15 p.m.•1 views

CVE-2022-21350

6.5CVSS6.7AI score0.03618EPSS

Exploits1References1

OSV•added 2022/01/19 12:15 p.m.•3 views

AZL-7740 CVE-2022-21367 affecting package mysql for versions less than 8.0.28-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Compiling. Supported versions that are affected are 5.7.36 and prior and 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

5.5CVSS6.7AI score0.01257EPSS

OSV•added 2022/01/19 12:15 p.m.•7 views

AZL-7732 CVE-2022-21351 affecting package mysql for versions less than 8.0.28-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

7.1CVSS6.7AI score0.0127EPSS

ATTACKERKB•added 2022/01/19 12:15 p.m.•3 views

CVE-2022-21353

6.5CVSS6.8AI score0.01222EPSS

6.1CVSS7.3AI score0.00706EPSS

CVE-2022-21354

Vulnerability in the Oracle iStore product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks...

ATTACKERKB•added 2022/01/19 12:15 p.m.•6 views

CVE-2022-21368

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Components Services. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

6.5CVSS6.5AI score0.01148EPSS