CVE-2018-2815

CVE-2018-2815 is a deserialization flaw in Oracle Java SE, Java SE Embedded, and JRockit (Serialization component) that can be exploited over network without authentication to cause a partial denial of service. Affected are Java SE 6u181, 7u171, 8u162, 10; Java SE Embedded 8u161; JRockit R28.3.17...

CVE-2018-2816

CVE-2018-2816 affects Oracle MySQL Server (subcomponent: Server: Optimizer). Affected versions: 5.7.21 and earlier. An attacker with network access via multiple protocols and high privileges can cause a hang or crash (denial of service). The description indicates remediation guidance via Oracle C...

CVE-2018-2834

CVE-2018-2834 affects Oracle Fusion Middleware Data Visualization Desktop (Security subcomponent) for version 12.2.4.1.1. Vulnerability could allow an unauthenticated user with logon to read/modify data and cause a hang or crash (DOS), impacting confidentiality, integrity, and availability. Root ...

CVE-2018-2846

CVE-2018-2846 affects Oracle MySQL Server, specifically the Server: Performance Schema. Affected versions are 5.7.21 and earlier. An attacker with high privileges and network access via multiple protocols can cause the MySQL Server to hang or crash (availability impact). The vulnerability is expl...

CVE-2018-2860

CVE-2018-2860 affects Oracle VM VirtualBox (Core) with affected versions prior to 5.1.36 and prior to 5.2.10. The vulnerability allows a high-privilege attacker with local logon to compromise VirtualBox, with potential broader impact on other products and a takeover of VirtualBox. Public sources ...

CVE-2018-2766

CVE-2018-2766 affects the MySQL Server component (InnoDB) and can lead to a complete DoS via network access. Affected versions per the initial data are MySQL 5.6.39 and earlier and 5.7.21 and earlier. Several connected advisories reference this CVE (e.g., Debian security notices, F5 advisory) but...

CVE-2018-2787

Disclaimer: This data contains information about vulnerable...

CVE-2018-2806

CVE-2018-2806 affects Oracle Outside In Technology (Outside In Filters) in Oracle Fusion Middleware, with affected version 8.5.3. The vulnerability is exploitable over a network (HTTP) by an unauthenticated attacker and may lead to unauthorized access to data and partial denial of service; exploi...

CVE-2018-2747

Oracle Financial Services Applications – Banking Corporate Lending Core module (versions 12.3.0, 12.4.0, 12.5.0 and 14.0.0) is affected by CVE-2018-2747. A low-privilege, network-accessible attacker via HTTP can access data in the Banking Corporate Lending component, leading to potential unauthor...

CVE-2018-2830

CVE-2018-2830 affects Oracle VM VirtualBox (Oracle Virtualization, Core subcomponent). Affected versions are VirtualBox 5.1.x prior to 5.1.36 and 5.2.x prior to 5.2.10. The vulnerability allows a low-privileged attacker with logon to the infrastructure where VirtualBox executes to compromise Virt...

CVE-2018-2851

The CVE-2018-2851 vulnerability affects Oracle Hospitality Simphony First Edition, specifically the Enterprise Management Console subcomponent, in versions 1.6 and 1.7. The issue allows a low-privileged attacker with network access via HTTP to compromise data, enabling unauthorized creation, dele...

CVE-2018-2849

CVE-2018-2849 affects Oracle Primavera P6 EPPM (Oracle Construction and Engineering Suite) Web Access subcomponent. Affected versions include 16.2 and 17.1–17.12. The vulnerability exists in Primavera P6 EPPM and can be exploited by a low-privileged attacker with network access via HTTP to gain u...

CVE-2018-2775

CVE-2018-2775 affects Oracle MySQL Server (subcomponent: Server: Optimizer). Affected are MySQL 5.7.21 and earlier. The vulnerability allows a network-based attacker with low privileges to cause a hang or a complete denial of service in MySQL Server. The issue is part of a broader set of MySQL CP...

CVE-2018-2837

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...

CVE-2018-2843

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...

CVE-2018-2860

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualB...

CVE-2018-2819

Removed by vendor...

CVE-2018-2782

Removed by vendor...

CVE-2018-2781

Removed by vendor...

CVE-2018-2830

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...