CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2022/04/19 8:38 p.m.•13 views

CVE-2022-21471

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.34. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

6.5CVSS6.5AI score0.00374EPSS

Debian CVE•added 2022/04/19 8:38 p.m.•42 views

CVE-2022-21471

6.5CVSS6.8AI score0.00374EPSS

Exploits0

Cvelist•added 2022/04/19 8:38 p.m.•21 views

CVE-2022-21470

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Process Scheduler. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterpri...

6.1CVSS6AI score0.0078EPSS

Exploits0References1

Cvelist•added 2022/04/19 8:37 p.m.•20 views

CVE-2022-21462

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS5.1AI score0.01216EPSS

CVE•added 2022/04/19 8:37 p.m.•102 views

CVE-2022-21458

CVE-2022-21458 affects Oracle PeopleSoft Enterprise PeopleTools (component: Navigation Pages, Portal, Query) with affected versions 8.58 and 8.59. The vulnerability is exploitable over HTTP by unauthenticated attackers and, per the sources, requires user interaction for a successful attack, poten...

6.1CVSS5.8AI score0.00749EPSS

Cvelist•added 2022/04/19 8:37 p.m.•15 views

CVE-2022-21452

4.9CVSS5.1AI score0.01216EPSS

Vulnrichment•added 2022/04/19 8:37 p.m.•9 views

CVE-2022-21442

Vulnerability in Oracle GoldenGate component: OGG Core Library. The supported version that is affected is Prior to 23.1. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle GoldenGate executes to compromise Oracle GoldenGate. While the...

8.8CVSS7AI score0.00308EPSS

Exploits0References1

CVE•added 2022/04/19 8:37 p.m.•120 views

CVE-2022-21441

CVE-2022-21441 pertains to Oracle WebLogic Server (Fusion Middleware, Core). Affected are WebLogic Server versions 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. The flaw allows an unauthenticated, network-accessible attacker via T3/IIOP to cause the server to hang or crash (DoS). Root cause is described...

7.5CVSS7.7AI score0.01265EPSS

CVE•added 2022/04/19 8:37 p.m.•139 views

CVE-2022-21438

CVE-2022-21438 affects Oracle MySQL Server, component Server: Optimizer, with affected versions 8.0.28 and earlier. An attacker with network access via multiple protocols and high privileges can cause the MySQL Server to hang or frequently crash (DoS). The initial records provide a CVSS v3.1 base...

4.9CVSS4.9AI score0.01216EPSS

Cvelist•added 2022/04/19 8:37 p.m.•15 views

CVE-2022-21437

4.9CVSS5.1AI score0.01183EPSS

Vulnrichment•added 2022/04/19 8:37 p.m.•13 views

CVE-2022-21436

4.9CVSS5.8AI score0.01216EPSS

CVE•added 2022/04/19 8:37 p.m.•144 views

CVE-2022-21435

CVE-2022-21435 affects Oracle MySQL Server, component Server: Optimizer, with affected versions 8.0.28 and earlier. The vulnerability allows a high-privilege attacker who can reach the server over the network (via multiple protocols) to cause a denial of service, resulting in the MySQL Server han...

4.9CVSS4.9AI score0.01183EPSS

Cvelist•added 2022/04/19 8:37 p.m.•21 views

CVE-2022-21435

4.9CVSS5.1AI score0.01183EPSS

AlpineLinux•added 2022/04/19 8:37 p.m.•49 views

CVE-2022-21434

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable...

5.3CVSS5.6AI score0.02401EPSS

Exploits0

CVE•added 2022/04/19 8:37 p.m.•87 views

CVE-2022-21424

CVE-2022-21424 affects Oracle Communications Billing and Revenue Management (component: Connection Manager) in version 12.0.0.4. A low-privilege, network-access attacker can target via TCP to gain unauthorized access to or modify data and potentially cause partial DoS. The base CVSS 3.1 score is ...

8.3CVSS8AI score0.01246EPSS

Cvelist•added 2022/04/19 8:37 p.m.•19 views

CVE-2022-21423

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

2.7CVSS3.6AI score0.0113EPSS

CVE•added 2022/04/19 8:37 p.m.•82 views

CVE-2022-21421

CVE-2022-21421 affects Oracle Fusion Middleware’s Oracle Business Intelligence Enterprise Edition (BI EE), specifically the Analytics Web General component. Affected versions include 5.5.0.0.0, 5.9.0.0.0, 12.2.1.3.0 and 12.2.1.4.0. The vulnerability permits an unauthenticated, network-accessible ...

7.5CVSS7.4AI score0.01542EPSS

CVE•added 2022/04/19 8:37 p.m.•158 views

CVE-2022-21420

CVE-2022-21420 affects Oracle Coherence (Oracle Fusion Middleware, Core) with affected versions 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0. The vulnerability allows an unauthenticated remote attacker who can reach the service via T3 to compromise Coherence and may lead to takeover. The CVSS3.1 vector...

9.8CVSS9.2AI score0.01404EPSS

CVE•added 2022/04/19 8:36 p.m.•146 views

CVE-2022-21414

CVE-2022-21414 affects Oracle MySQL Server, specifically the Server: Optimizer. Affected versions are 8.0.28 and earlier. An attacker with high privileges and network access via multiple protocols can cause the server to hang or crash (denial of service). The vulnerability is documented as a deni...

4.9CVSS4.8AI score0.0129EPSS