CVE-2022-21603

Vulnerability in the Oracle Database - Sharding component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows high privileged attacker having Local Logon privilege with network access via Local Logon to compromise Oracle Databas...

CVE-2022-21641

Summary (from provided sources): CVE-2022-21641 affects Oracle MySQL Server, specifically the Server: Optimizer component. Affected versions are 8.0.29 and earlier. The vulnerability is exploitable by a high-privilege attacker with network access via multiple protocols and can lead to a hang or a...

CVE-2022-21634

Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle Java SE component: LLVM Interpreter. Supported versions that are affected are Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access...

CVE-2022-21603

CVE-2022-21603 affects Oracle Database Server, specifically the Sharding component, with 19c and 21c as affected versions. The root cause is a vulnerability in Sharding that enables a high-privilege attacker with Local Logon privilege and network access via Local Logon to compromise the Sharding ...

CVE-2022-21606

CVE-2022-21606 affects Oracle Database Server 19c, specifically the Oracle Services for Microsoft Transaction Server component on Windows. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise the Transaction Server component; exploitation requires human ...

CVE-2022-39407

CVE-2022-39407 affects Oracle PeopleSoft’s PeopleTools Security component in versions 8.58–8.60. A low-privilege, logon-enabled attacker could access unauthorized PeopleSoft data due to the vulnerability; CVSS 3.1 base score 5.5 (Confidentiality impact). Oracle’s October 2022 CPU and later adviso...

CVE-2022-21613

CVE-2022-21613 affects Oracle Fusion Middleware’s Oracle Enterprise Data Quality component (Dashboard). Affected versions are 12.2.1.3.0 and 12.2.1.4.0. The vulnerability allows unauthenticated attackers with network access via HTTP to compromise Oracle Enterprise Data Quality; successful exploit...

CVE-2022-21596

Vulnerability in the Oracle Database - Advanced Queuing component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having DBA user privilege with network access via Oracle Net to compromise Oracle Database -...

CVE-2022-21601

CVE-2022-21601 affects Oracle Communications Billing and Revenue Management (OCBRM) when using the Connection Manager. Affected versions are 12.0.0.4.0 through 12.0.0.7.0. The vulnerability allows an unauthenticated attacker over TCP to read restricted data and cause a partial denial of service. ...

CVE-2022-21635

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

CVE-2022-39421

CVE-2022-39421 affects Oracle VM VirtualBox core on Windows. Affected: VirtualBox ≤ 6.1.39 (Windows), with vulnerabilities that enable takeover when a low-privilege user with logon interacts with the system. Exploitation vector is local; attack complexity low; CVSS: UI:R, PR:L, AV:L, with C/I/A i...

CVE-2022-21639

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Elastic Search Integration. Supported versions that are affected are 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

CVE-2022-39400

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2022-21626

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerabili...

CVE-2022-21617

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Connection Handling. Supported versions that are affected are 5.7.39 and prior and 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromi...

CVE-2022-21637

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

CVE-2022-39408

CVE-2022-39408 affects Oracle MySQL Server (Server: Optimizer) and targets the MySQL 8.0 line (8.0.30 and earlier). The vulnerability allows a low-privilege attacker with network access via multiple protocols to cause a hang or crash (DoS) of MySQL Server. Public details in the provided docs conf...

CVE-2022-21617

CVE-2022-21617 affects Oracle MySQL Server, specifically the Server: Connection Handling component. Affected versions are MySQL 5.7.39 and earlier and 8.0.30 and earlier. An attacker with network access via multiple protocols and high privileges can cause a hang or frequent, repeatable crashes (d...

CVE-2022-21594

CVE-2022-21594 — MySQL Server (Optimizer) Denial of Service . Affects MySQL 8.0.x up to 8.0.30 (including 8.0.30 and prior). The vulnerability resides in the Server: Optimizer component and can be exploited remotely over multiple protocols by a high-privilege attacker to cause the MySQL Server to...

CVE-2022-39408

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...