Lucene search
K

476 matches found

RedhatCVE
RedhatCVE
added 2021/10/19 9:3 p.m.89 views

CVE-2021-35559

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS2.3AI score0.14839EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/10/19 12:0 a.m.5 views

PT-2021-7895

Name of the Vulnerable Software and Affected Versions Java SE versions 7u311, 8u301, 11.0.12, 17 Oracle GraalVM Enterprise Edition versions 20.3.3 and 21.2.0 Description The issue is related to the ImageIO component and allows an unauthenticated attacker with network access via multiple protocols...

5.3CVSS6.8AI score0.06322EPSS
Exploits0References219
NVD
NVD
added 2021/07/21 3:16 p.m.17 views

CVE-2021-2432

Vulnerability in the Java SE product of Oracle Java SE component: JNDI. The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

4.3CVSS0.03701EPSS
Exploits0References5
Prion
Prion
added 2021/07/21 3:16 p.m.21 views

Design/Logic Flaw

Vulnerability in the Java SE product of Oracle Java SE component: JNDI. The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

4.3CVSS4.3AI score0.03701EPSS
Exploits0References5Affected Software2
NVD
NVD
added 2021/07/21 3:15 p.m.19 views

CVE-2021-2340

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Memcached. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4CVSS0.02312EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/07/20 10:44 p.m.21 views

CVE-2021-2438

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

4.3CVSS5.1AI score0.0084EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/07/20 10:44 p.m.11 views

CVE-2021-2432

Vulnerability in the Java SE product of Oracle Java SE component: JNDI. The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

3.7CVSS5.7AI score0.03701EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2021/07/20 10:44 p.m.26 views

CVE-2021-2432

Vulnerability in the Java SE product of Oracle Java SE component: JNDI. The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

4.3CVSS4.6AI score0.03701EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/07/20 10:44 p.m.36 views

CVE-2021-2432

Vulnerability in the Java SE product of Oracle Java SE component: JNDI. The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

4.3CVSS4.6AI score0.03701EPSS
Exploits0
OSV
OSV
added 2021/07/15 8:15 p.m.4 views

CVE-2021-0291

An Exposure of System Data vulnerability in Juniper Networks Junos OS and Junos OS Evolved, where a sensitive system-level resource is not being sufficiently protected, allows a network-based unauthenticated attacker to send specific traffic which partially reaches this resource. A high rate of...

6.5CVSS5.8AI score0.01008EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/06/28 12:0 a.m.37 views

EulerOS 2.0 SP8 : java-1.8.0-openjdk (EulerOS-SA-2021-1982)

According to the versions of the java-1.8.0-openjdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are...

4.3CVSS6AI score0.03713EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.50 views

SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2020:14398-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14398-1 advisory. - Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u241, 8u231,...

8.3CVSS6.5AI score0.0623EPSS
Exploits0References19
NVD
NVD
added 2021/04/22 10:15 p.m.21 views

CVE-2021-2158

Vulnerability in the Hyperion Financial Management product of Oracle Hyperion component: Task Automation. The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Management...

4.6CVSS0.00582EPSS
Exploits0References1
Prion
Prion
added 2021/04/22 10:15 p.m.17 views

Code injection

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Health Center. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterpris...

7.5CVSS7.7AI score0.01293EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/04/22 9:54 p.m.85 views

CVE-2021-2294

CVE-2021-2294 targets Oracle WebLogic Server (Fusion Middleware Core). Affected versions: 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, 14.1.1.0.0. The flaw allows unauthenticated network access via T3/IIOP to compromise WebLogic Server, enabling unauthorized updates, insertions or deletions of...

6.5CVSS6.7AI score0.01297EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/04/22 9:53 p.m.20 views

CVE-2021-2232

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 8.0.23 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to...

1.9CVSS3.5AI score0.00363EPSS
Exploits0References2
CVE
CVE
added 2021/04/22 9:53 p.m.54 views

CVE-2021-2219

CVE-2021-2219 affects Oracle PeopleSoft Enterprise PeopleTools, SQR component, versions 8.56–8.58. Low-privilege, network-access exploit via HTTP can lead to unauthorized data updates/reads and partial DoS. CVSS v3.1 base score 7.4. Oracle CPU April 2021 includes patches; apply the update to miti...

7.4CVSS7AI score0.00865EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/04/22 8:15 p.m.12 views

CVE-2021-0254

A buffer size validation vulnerability in the overlayd service of Juniper Networks Junos OS may allow an unauthenticated remote attacker to send specially crafted packets to the device, triggering a partial Denial of Service DoS condition, or leading to remote code execution RCE. Continued receip...

9.8CVSS0.02566EPSS
Exploits0References1
NVD
NVD
added 2021/01/20 3:15 p.m.20 views

CVE-2021-2057

Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications component: Internal Operations. The supported version that is affected is 19.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

6.5CVSS5.9AI score0.00871EPSS
Exploits0References1
OSV
OSV
added 2021/01/20 3:15 p.m.5 views

CVE-2021-2057

Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications component: Internal Operations. The supported version that is affected is 19.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

6.3CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder