Design/Logic Flaw

Vulnerability in the Oracle Marketing product of Oracle E-Business Suite component: Marketing Administration. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

Design/Logic Flaw

Vulnerability in the Oracle Field Service product of Oracle E-Business Suite component: Wireless. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Field...

Design/Logic Flaw

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware component: Analytics Actions. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP t...

CVE-2019-3022

CVE-2019-3022 affects Oracle E-Business Suite’s Content Manager (component: Content). Affects supported versions 12.1.1–12.1.3 and 12.2.3–12.2.9. The vulnerability enables an unauthenticated attacker with network access via HTTP to compromise Content Manager, potentially allowing unauthorized upd...

CVE-2019-3017

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

CVE-2019-3011

CVE-2019-3011 affects Oracle MySQL Server (Server: C API). Affected versions are 8.0.17 and prior; attacker with network access via multiple protocols can cause MySQL Server to hang or crash (DoS). Multiple connected advisories reference this CVE within the MySQL 8.0 stack (InnoDB/C API/Parser/et...

CVE-2019-3028

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

CVE-2019-3028

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

CVE-2019-3002

CVE-2019-3002 affects Oracle VM VirtualBox core in 5.2.x prior to 5.2.34 and 6.0.x prior to 6.0.14. The issue allows a locally logged-in, high-privilege attacker to compromise VirtualBox, potentially causing a hang or frequently repeatable crash (partial/complete DoS) and impacting other products...

CVE-2019-3002

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

CVE-2019-3004

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks...

CVE-2019-2994

Oracle E‑Business Suite’s Marketing Administration component (Oracle Marketing) is affected in versions 12.1.1–12.1.3. The vulnerability permits unauthenticated, network‑accessible access via HTTP to Oracle Marketing, requiring user interaction for exploitation, and can lead to unauthorized acces...

CVE-2019-2997

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

CVE-2019-3004

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks...

CVE-2019-2997

CVE-2019-2997 concerns the MySQL Server (Oracle MySQL), specifically the Server: DDL component. The affected versions are 8.0.17 and prior. The description states that a high-privilege attacker who can access the server over multiple network protocols can exploit this vulnerability to cause the M...

CVE-2019-3002

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

CVE-2019-3005

The CVE-2019-3005 entry applies to Oracle VM VirtualBox (Core) with affected versions prior to 5.2.34 and prior to 6.0.14. The vulnerability allows a high-privilege attacker who has logon to the host to compromise VirtualBox, potentially causing a hang or a frequently repeatable crash (complete D...

CVE-2019-2970

The CVE-2019-2970 entry describes a vulnerability in Oracle Outside In Technology (Outside In Filters) within Oracle Fusion Middleware. Affected product/version: Outside In Technology 8.5.4. The vulnerability is exploitable over the network with unauthenticated access via HTTP and can lead to una...

CVE-2019-2986

Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM component: LLVM Interpreter. The supported version that is affected is 19.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Oracle GraalVM...

CVE-2019-2985

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Fluid Core. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...