CVE-2020-14632

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Options. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

CVE-2020-14632

CVE-2020-14632 concerns the MySQL Server component “Server: Options.” The vulnerability affects MySQL 8.0.x (8.0.20 and earlier) and can be exploited remotely with high privileges to cause a hang or crash of MySQL Server (DoS) via multiple network protocols. Connected advisories ( MiracleLinux AX...

CVE-2020-14629

CVE-2020-14629 affects Oracle VM VirtualBox (Core). Affected are VirtualBox versions prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. The issue allows a high-privilege attacker with local logon to compromise VirtualBox, potentially leading to unauthorized access to data across VirtualBox-ava...

CVE-2020-14631

CVE-2020-14631 affects Oracle MySQL Server (component: Server: Security: Audit). The MiracleML/MiracleLinux and related Nessus/RHSA entries indicate affected MySQL Server versions 8.0.20 and earlier; exploit involves high-privilege attacker with network access via multiple protocols, potentially ...

CVE-2020-14624

CVE-2020-14624 is a MySQL Server vulnerability affecting the Server: JSON component. The available documents identify affected versions as 8.0.20 and prior, with exploitation requiring network access via multiple protocols. Successful attacks can cause the MySQL Server to hang or crash (complete ...

CVE-2020-14612

Vulnerability in the PeopleSoft Enterprise HRMS product of Oracle PeopleSoft component: Time and Labor. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise HRMS. Successful...

CVE-2020-14628

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle...

CVE-2020-14621

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JAXP. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

CVE-2020-14621

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JAXP. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

CVE-2020-14623

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

CVE-2020-14614

CVE-2020-14614 affects the MySQL Server (Oracle MySQL) package, specifically the Server: Optimizer. Affected versions are 8.0.20 and earlier. An attacker with high privileges and network access via multiple protocols can exploit this to cause a hang or a complete denial-of-service crash of MySQL ...

CVE-2020-14619

CVE-2020-14619 affects Oracle MySQL Server 8.0.20 and earlier, due to a vulnerability in Server: Parser that can cause a denial of service. Exploitation could lead to a hang or frequent crash. Remediation is to upgrade to a newer MySQL 8.0 release; distros list fixes (e.g., Gentoo: >=8.0.24, A...

CVE-2020-14597

CVE-2020-14597 affects Oracle MySQL Server, component Server: Optimizer, in 8.0.20 and earlier. A high-privilege attacker with network access via multiple protocols can exploit this to cause a hang or frequent crash (DoS) of MySQL Server. https://nvd.nist.gov shows CVSS 3.1 base score 4.9 (AV:N/A...

CVE-2020-14597

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2020-14599

Oracle E-Business Suite CRM Gateway for Mobile Devices (component: Setup of Mobile Applications) is affected in versions 12.1.1–12.1.3. The vulnerability allows unauthenticated, network-based HTTP access to compromise data, enabling unauthorized create/delete/modify of Oracle CRM Gateway data. CV...

CVE-2020-14593

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

CVE-2020-14575

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

CVE-2020-14575

The CVE-2020-14575 entry concerns Oracle MySQL Server (Server: DML) affecting 8.0.20 and earlier. The vulnerability is exploitable remotely over multiple protocols by a high-privilege attacker and can cause a hang or frequent crash (DoS) of MySQL Server. The CVSS 3.1 base score is 4.9 (Availabili...

CVE-2020-14586

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

CVE-2020-14580

Vulnerability in the Oracle Communications Session Border Controller product of Oracle Communications Applications component: System Admin. Supported versions that are affected are 8.1.0, 8.2.0 and 8.3.0. Easily exploitable vulnerability allows low privileged attacker with network access via SSH ...