CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2020/10/21 2:4 p.m.•19 views

CVE-2020-14893

4.9CVSS5.2AI score0.00292EPSS

CVE•added 2020/10/21 2:4 p.m.•63 views

CVE-2020-14881

CVE-2020-14881 affects Oracle VM VirtualBox (Core) with vulnerable versions prior to 6.1.16. The issue allows a high-privilege attacker with logon to compromise VirtualBox, with potential unauthorized access to sensitive data and impact on related products. Remediation per Gentoo/Mageia advisorie...

6CVSS6.1AI score0.0014EPSS

CVE•added 2020/10/21 2:4 p.m.•65 views

CVE-2020-14889

CVE-2020-14889 affects Oracle VM VirtualBox (Core) with versions prior to 6.1.16. The vulnerability enables a high-privilege attacker with local access to compromise VirtualBox, with potential to access sensitive data or broader VirtualBox data. Multiple connected sources corroborate the affected...

6CVSS6.1AI score0.00054EPSS

Exploits0References2Affected Software1

CVE•added 2020/10/21 2:4 p.m.•369 views

CVE-2020-14893

CVE-2020-14893 affects Oracle MySQL Server (Server: Optimizer). Affected: MySQL 8.0.21 and earlier. An attacker with network access via multiple protocols and high privileges can cause a hang or frequent crashes (DoS) of MySQL Server. Public details confirm vulnerability scope and impact as descr...

4.9CVSS5AI score0.00292EPSS

Vulnrichment•added 2020/10/21 2:4 p.m.•8 views

CVE-2020-14865

Vulnerability in the PeopleSoft Enterprise SCM eSupplier Connection product of Oracle PeopleSoft component: eSupplier Connection. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

8.1CVSS6.9AI score0.01095EPSS

Exploits0References1

CVE•added 2020/10/21 2:4 p.m.•1023 views

CVE-2020-14864

CVE-2020-14864 affects Oracle BI Enterprise Edition (OBIEE) under the Fusion Middleware Installation component. A Directory Traversal/Local File Inclusion in the getPreviewImage function lets an authenticated attacker with access to the admin interface read arbitrary system files via the previewF...

7.8CVSS7AI score0.94019EPSS

In wildExploits2References3Affected Software1

CVE•added 2020/10/21 2:4 p.m.•367 views

CVE-2020-14868

CVE-2020-14868 affects Oracle MySQL Server (Server: Optimizer) and is associated with MySQL 8.0.21 and earlier. The vulnerability allows a high-privileged attacker with network access via multiple protocols to trigger a hang or frequent crash (Denial of Service) in MySQL Server. The connected mat...

6.8CVSS5.1AI score0.0034EPSS

Cvelist•added 2020/10/21 2:4 p.m.•11 views

CVE-2020-14865

8.1CVSS8.2AI score0.01095EPSS

Exploits0References1

Debian CVE•added 2020/10/21 2:4 p.m.•26 views

CVE-2020-14866

6.8CVSS5.5AI score0.00201EPSS

Debian CVE•added 2020/10/21 2:4 p.m.•21 views

CVE-2020-14870

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: X Plugin. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

6.8CVSS5.5AI score0.00201EPSS

Vulnrichment•added 2020/10/21 2:4 p.m.•20 views

CVE-2020-14846

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

6.5CVSS6.4AI score0.00651EPSS

CVE•added 2020/10/21 2:4 p.m.•367 views

CVE-2020-14848

CVE-2020-14848 affects MySQL Server (Oracle MySQL), specifically the InnoDB component. Affected products/versions: MySQL 8.0.21 and earlier. Description from connected docs: an authenticated attacker with network access via multiple protocols can exploit this to trigger a hang or a frequently rep...

6.8CVSS5AI score0.0034EPSS

Vulnrichment•added 2020/10/21 2:4 p.m.•16 views

CVE-2020-14839

4.9CVSS5.8AI score0.00206EPSS

Debian CVE•added 2020/10/21 2:4 p.m.•31 views

CVE-2020-14845

6.8CVSS5.5AI score0.00206EPSS

Vulnrichment•added 2020/10/21 2:4 p.m.•9 views

CVE-2020-14841

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP to...

9.8CVSS7.5AI score0.13492EPSS

CVE•added 2020/10/21 2:4 p.m.•57 views

CVE-2020-14850

The CVE-2020-14850 entry covers an Oracle E-Business Suite vulnerability in the CRM Technical Foundation (Flex Fields). Affected versions are 12.1.3 and 12.2.3–12.2.10. The issue allows an unauthenticated attacker with network access via HTTP to compromise Oracle CRM Technical Foundation, with su...

8.2CVSS8.3AI score0.01113EPSS

Exploits0References1Affected Software1

CVE•added 2020/10/21 2:4 p.m.•360 views

CVE-2020-14846

CVE-2020-14846 affects Oracle MySQL Server (component: Server: Optimizer). Affected: MySQL 8.0.21 and earlier. Described as an easily exploitable issue where a low-privilege attacker with network access via multiple protocols can cause the server to hang or crash (DoS). CVSS v3.1 base score 6.5 (...

6.8CVSS6.3AI score0.00651EPSS