Lucene search
K

476 matches found

CNVD
CNVD
added 2022/02/18 12:0 a.m.24 views

Unspecified Vulnerability in Oracle Solaris (CNVD-2022-36957)

Oracle Solaris is a set of UNIX operating systems from Oracle. Oracle Solaris has a security vulnerability that could allow a low-privileged attacker to compromise Oracle Solaris by logging on to the infrastructure that executes Oracle Solaris.A successful attack would require human-computer...

6CVSS4.8AI score0.00416EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.26 views

AlmaLinux 8 : libdb (ALSA-2021:1675)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:1675 advisory. - Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are Prior to 6.138, prior to 6.2.38 and prior to 18.1.32...

3.3CVSS5.5AI score0.00604EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.6 views

Mageia: Security Advisory (MGASA-2021-0057)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.5AI score0.00604EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/01/27 7:59 p.m.2 views

OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS7.4AI score0.03486EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/27 2:14 p.m.1 views

OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS7.4AI score0.07748EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/27 2:11 p.m.2 views

OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacke...

5.3CVSS6.8AI score0.06886EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2022/01/25 8:0 a.m.4 views

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.34 and prior 7.5.24 and prior 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Cluster executes to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Cluster accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Cluster. CVSS 3.1 Base Score 2.9 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:L).

...

2.9CVSS6.2AI score0.01443EPSS
Exploits0
CNVD
CNVD
added 2022/01/24 12:0 a.m.29 views

Oracle Solaris Input Validation Error Vulnerability

Oracle Solaris is a UNIX operating system from Oracle Corporation USA. Oracle Solaris is vulnerable to an input validation error, which can be exploited by attackers to cause an unauthorized capability to cause a partial denial of service partial DOS of Oracle Solaris...

5.3CVSS5AI score0.02789EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/01/20 12:0 a.m.822 views

Oracle Java SE 1.7.0_331 / 1.8.0_321 / 1.11.0_14 / 1.17.0_2 Multiple Vulnerabilities (Unix January 2022 CPU)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is affected by multiple vulnerabilities as referenced in the January 2022 CPU advisory: - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D...

5.3CVSS6AI score0.08346EPSS
Exploits0References19
NVD
NVD
added 2022/01/19 12:15 p.m.11 views

CVE-2022-21403

Vulnerability in the Oracle Communications Operations Monitor product of Oracle Communications component: Mediation Engine. Supported versions that are affected are 3.4, 4.2, 4.3, 4.4 and 5.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6.6CVSS0.00667EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.4 views

CVE-2022-21323

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication...

2.9CVSS6.6AI score0.01553EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/01/19 12:15 p.m.25 views

CVE-2022-21321

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

2.9CVSS0.01443EPSS
Exploits0References3
NVD
NVD
added 2022/01/19 12:15 p.m.21 views

CVE-2022-21317

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

2.9CVSS0.01386EPSS
Exploits0References3
OSV
OSV
added 2022/01/19 12:15 p.m.8 views

AZL-7538 CVE-2022-21265 affecting package mysql for versions less than 8.0.28-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

3.8CVSS6.3AI score0.01478EPSS
Exploits0References1
OSV
OSV
added 2022/01/19 12:15 p.m.22 views

CVE-2022-21249

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

2.7CVSS5.1AI score
Exploits0References4
Prion
Prion
added 2022/01/19 12:15 p.m.13 views

Design/Logic Flaw

Vulnerability in the Oracle Communications Operations Monitor product of Oracle Communications component: Mediation Engine. Supported versions that are affected are 3.4, 4.2, 4.3, 4.4 and 5.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6.5CVSS6.1AI score0.00667EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/01/19 12:15 p.m.33 views

Design/Logic Flaw

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication...

2.9CVSS2.2AI score0.01553EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2022/01/19 12:15 p.m.31 views

CVE-2022-21372

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4CVSS6.6AI score0.00878EPSS
Exploits0References3
Prion
Prion
added 2022/01/19 12:15 p.m.17 views

Code injection

Vulnerability in the Oracle Solaris product of Oracle Systems component: Fault Management Architecture. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle...

6CVSS5.1AI score0.00416EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/01/19 12:15 p.m.25 views

Buffer overflow

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5CVSS4.7AI score0.03091EPSS
Exploits0References5Affected Software6
Rows per page
Query Builder