CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2020/01/15 5:15 p.m.•4 views

CVE-2020-2543

7.3CVSS7.1AI score0.01244EPSS

OSV•added 2020/01/15 5:15 p.m.•3 views

CVE-2020-2540

6.5CVSS6.7AI score

OSV•added 2020/01/15 5:15 p.m.•3 views

CVE-2020-2517

Vulnerability in the Database Gateway for ODBC component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c, and 19c. Difficult to exploit vulnerability allows high privileged attacker having Create Procedure, Create Database Link privilege with...

3.3CVSS6.3AI score

Exploits0References2

Prion•added 2020/01/15 5:15 p.m.•18 views

Design/Logic Flaw

Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite component: Preferences. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle CR...

4.3CVSS4.3AI score0.00872EPSS

4.8CVSS6.7AI score0.03132EPSS

UBUNTU-CVE-2020-2655

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this...

Exploits0References4

Prion•added 2020/01/15 5:15 p.m.•12 views

Design/Logic Flaw

Vulnerability in the Hyperion Financial Close Management product of Oracle Hyperion component: Close Manager. The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Close...

2.1CVSS3.6AI score0.0083EPSS

Prion•added 2020/01/15 5:15 p.m.•17 views

Design/Logic Flaw

Vulnerability in the Oracle Human Resources product of Oracle E-Business Suite component: Hierarchy Diagrammers. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise...

6.5CVSS8.5AI score0.01508EPSS

3.7CVSS6.7AI score0.03085EPSS

UBUNTU-CVE-2020-2590

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

Exploits0References4

2.7CVSS6.7AI score0.01305EPSS

UBUNTU-CVE-2020-2572

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Audit Plugin. Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQ...

Exploits0References5

OSV•added 2020/01/15 5:15 p.m.•2 views

UBUNTU-CVE-2020-2585

Vulnerability in the Java SE product of Oracle Java SE component: JavaFX. The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

5.9CVSS6.9AI score0.03206EPSS

Exploits0References3

4.8CVSS6.7AI score0.02984EPSS

UBUNTU-CVE-2020-2593

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

Exploits0References4

CVE•added 2020/01/15 4:34 p.m.•51 views

CVE-2020-2652

CVE-2020-2652 affects Oracle E-Business Suite, specifically the Oracle CRM Technical Foundation component (Preferences). Affected versions are 12.1.3 and 12.2.3–12.2.9. The issue enables an unauthenticated attacker with network access via HTTPS to compromise Oracle CRM Technical Foundation, poten...

8.2CVSS8.2AI score0.01275EPSS

Vulnrichment•added 2020/01/15 4:34 p.m.•13 views

CVE-2020-2586

9.9CVSS7.8AI score0.01508EPSS

Cvelist•added 2020/01/15 4:34 p.m.•21 views

CVE-2020-2586

9.9CVSS8.8AI score0.01508EPSS

Cvelist•added 2020/01/15 4:34 p.m.•28 views

CVE-2020-2556

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Core. Supported versions that are affected are 16.2.0.0-16.2.19.0, 17.12.0.0-17.12.16.0, 18.8.0.0-18.8.16.0, 19.12.0.0 and 20.1.0.0. Easily exploitable vulnerability...

7.3CVSS6.9AI score0.00429EPSS

CNVD•added 2020/01/15 12:0 a.m.•2 views

Unspecified Vulnerability in Oracle Enterprise Manager Base Platform (CNVD-2020-03220)

Oracle Enterprise Manager Base Platform is a complete installer that includes OMS, agents, repositories, and management plug-ins. An unspecified vulnerability exists in Oracle Enterprise Manager Base Platform. An attacker could exploit this vulnerability to gain unauthorized access to, update,...

6.5CVSS6.8AI score0.01205EPSS

CNVD•added 2020/01/15 12:0 a.m.•3 views

Unspecified Vulnerability in Oracle Financial Services Applications Banking Payments (CNVD-2020-04385)

Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The product includes core banking, online banking and property management, etc. Banking Payments is a complete payment processing solution. An unspecified vulnerability exists in Oracle Financial...

5.8CVSS6.7AI score0.01002EPSS

CNVD•added 2020/01/15 12:0 a.m.•2 views

Unspecified Vulnerability in Oracle Enterprise Manager Base Platform (CNVD-2020-04363)

6.5CVSS6.8AI score0.01159EPSS

CNVD•added 2020/01/15 12:0 a.m.•3 views

Unspecified Vulnerability in Oracle Enterprise Manager Base Platform (CNVD-2020-04357)

6.5CVSS6.8AI score0.01231EPSS