CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Debian CVE•added 2020/10/21 2:4 p.m.•26 views

CVE-2020-14785

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

Debian CVE•added 2020/10/21 2:4 p.m.•28 views

CVE-2020-14794

CVE•added 2020/10/21 2:4 p.m.•49 views

CVE-2020-14795

CVE-2020-14795 affects Oracle PeopleSoft Enterprise PeopleTools PIA Core Technology (validated on PeopleSoft 8.57 and 8.58). The vulnerability enables unauthenticated remote access via HTTP, with user interaction required, potentially leading to unauthorized access to sensitive data or complete a...

6.5CVSS6.3AI score0.02348EPSS

CVE•added 2020/10/21 2:4 p.m.•55 views

CVE-2020-14763

CVE-2020-14763 affects Oracle Database Server’s Application Express Quick Poll component, with the affected version being prior to 20.2. A low-privileged attacker with a valid user account and network access via HTTP can compromise Quick Poll, with successful attacks potentially leading to unauth...

5.4CVSS5.3AI score0.00185EPSS

Cvelist•added 2020/10/21 2:4 p.m.•32 views

CVE-2020-14776

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS5.3AI score0.00612EPSS

Exploits0References9

Debian CVE•added 2020/10/21 2:4 p.m.•24 views

CVE-2020-14773

Debian CVE•added 2020/10/21 2:4 p.m.•26 views

CVE-2020-14777

Cvelist•added 2020/10/21 2:4 p.m.•17 views

CVE-2020-14774

Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite component: Preferences. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromis...

7.5CVSS7.4AI score0.01537EPSS

Exploits0References1

CVE•added 2020/10/21 2:4 p.m.•379 views

CVE-2020-14777

Oracle MySQL Server vulnerability CVE-2020-14777 affects the Server: Optimizer in MySQL 8.0.21 and earlier. An attacker with network access via multiple protocols and high privileges can cause the server to hang or crash (DoS). Affected product/version details are supported in connected documents...

4.9CVSS4.9AI score0.00825EPSS

Exploits0References6Affected Software1

Vulnrichment•added 2020/10/21 2:4 p.m.•17 views

CVE-2020-14777

4.9CVSS5.8AI score0.00825EPSS

Exploits0References6

Debian CVE•added 2020/10/21 2:4 p.m.•31 views

CVE-2020-14776

4.9CVSS6.5AI score0.00612EPSS

CVE•added 2020/10/21 2:4 p.m.•61 views

CVE-2020-14742

CVE-2020-14742 affects Oracle Database Server — Core RDBMS component. Affected versions: 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c, and 19c. Root cause: vulnerability in Core RDBMS that can be exploited by a high-privilege SYSDBA with network access via Oracle Net. Impact: unauthorized update/insert/dele...

5.5CVSS3.7AI score0.00206EPSS

CVE•added 2020/10/21 2:4 p.m.•65 views

CVE-2020-14735

CVE-2020-14735 affects Oracle Database Server Scheduler component. Affected versions are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c, and 19c. The vulnerability allows a low-privileged attacker with Local Logon to compromise the Scheduler, with potential takeover and impact to related products. CVSS 3.1 ba...

8.8CVSS8.3AI score0.0004EPSS

Cvelist•added 2020/10/21 2:4 p.m.•18 views

CVE-2020-14735

Vulnerability in the Scheduler component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Easily exploitable vulnerability allows low privileged attacker having Local Logon privilege with logon to the infrastructure where Scheduler...

8.8CVSS8.7AI score0.0004EPSS

Exploits0References1

CVE•added 2020/10/21 2:4 p.m.•53 views

CVE-2020-14740

CVE-2020-14740 affects Oracle Database Server’s SQL Developer Install component in versions 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18c. A low-privilege user with Client Computer User Account privileges and logon to the environment can trigger a vulnerability that requires user interaction and can lead ...

2.8CVSS3.3AI score0.00088EPSS

Vulnrichment•added 2020/10/21 2:4 p.m.•9 views

CVE-2020-14741

Vulnerability in the Database Filesystem component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows high privileged attacker having Resource, Create Table, Create View, Create Procedure, Dbfsrole privilege...

4.9CVSS5.8AI score0.00213EPSS

Exploits0References1

Cvelist•added 2020/10/21 2:4 p.m.•23 views

CVE-2020-14760

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 5.7.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS5.7AI score0.00127EPSS

Exploits0References3

CVE•added 2020/10/21 2:4 p.m.•55 views

CVE-2020-14741

CVE-2020-14741 is a vulnerability in the Oracle Database Server’s Database Filesystem component affecting Oracle versions 11.2.0.4, 12.1.0.2, and 12.2.0.1. An attacker with high privileges (Resource, Create Table, Create View, Create Procedure, Dbfs_role) and network access via Oracle Net can cau...

6.8CVSS5.3AI score0.00213EPSS