CVE-2020-2963

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Web Services. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via IIOP, T3 to...

CVE-2020-2963

CVE-2020-2963 affects Oracle WebLogic Server (Web Services component). Affected versions: 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0. Root cause involves insecure handling of WebLogic Web Services requests over IIOP/T3, enabling a high-privilege attacker with network access to compromise the ...

CVE-2020-2938

Vulnerability in the Oracle Financial Services Loan Loss Forecasting and Provisioning product of Oracle Financial Services Applications component: User Interface. Supported versions that are affected are 8.0.6 - 8.0.8. Easily exploitable vulnerability allows low privileged attacker with network...

CVE-2020-2947

Vulnerability in the PeopleSoft Enterprise HCM Absence Management product of Oracle PeopleSoft component: Absence Management. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

CVE-2020-2943

CVE-2020-2943 affects Oracle Financial Services Applications Liquidity Risk Measurement and Management, UI component. Affected versions: 8.0.7 and 8.0.8. Vulnerability allows a low-privileged attacker with network access via HTTP to compromise the system, enabling unauthorized creation, deletion ...

CVE-2020-2951

CVE-2020-2951 affects the Oracle VM VirtualBox core component. Affected products/versions include VirtualBox 5.2.x before 5.2.40, 6.0.x before 6.0.20, and 6.1.x before 6.1.6. The issue allows a low-privilege attacker with local logon to cause a hang or frequent crashes (denial of service) in Virt...

CVE-2020-2937

The CVE-2020-2937 issue affects Oracle Financial Services Applications’ Oracle Insurance Accounting Analyzer, specifically the UI component, with vulnerable versions 8.0.6–8.0.9. The vulnerability allows a low-privilege attacker with network access via HTTP to compromise data, enabling unauthoriz...

CVE-2020-2945

CVE-2020-2945 affects Oracle Financial Services Applications, Deposit Insurance Calculations for Liquidity Risk Management (component: User Interfaces) in versions 8.0.7 and 8.0.8. The vulnerability description indicates network access via HTTP from a low-privilege attacker can lead to unauthoriz...

CVE-2020-2908

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ...

CVE-2020-2929

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

CVE-2020-2908

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ...

CVE-2020-2928

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2020-2923

CVE-2020-2923 affects Oracle MySQL Server, component Server: Optimizer, with affected versions 8.0.19 and earlier. The vulnerability allows a high-privileged attacker who can access the service over network through multiple protocols to cause a hang or crash (Denial of Service). The connected Alm...

CVE-2020-2908

CVE-2020-2908 affects Oracle VM VirtualBox (Core) with vulnerable versions before 5.2.40, 6.0.20, and 6.1.6. The CVE enables a high-privilege local attacker to compromise VirtualBox, with potential takeover and impact on other products. Public references show multiple advisories and vendor/securi...

CVE-2020-2909

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

CVE-2020-2909

The CVE-2020-2909 entry concerns Oracle VM VirtualBox Core vulnerability affecting multiple VirtualBox branches. The provided documents confirm the affected lines and versions: prior to 5.2.40, prior to 6.0.20, and prior to 6.1.6. The root cause is not explicitly stated beyond the description in ...

CVE-2020-2929

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

CVE-2020-2924

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2020-2892

CVE-2020-2892 affects Oracle MySQL Server, component Server: Optimizer, with affected versions 8.0.19 and earlier. The vulnerability allows a high-privileged attacker with network access via multiple protocols to cause the MySQL server to hang or crash (DoS). Related connected documents confirm t...

CVE-2020-2895

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...