5574 matches found
Design/Logic Flaw
Vulnerability in the Oracle Enterprise Data Quality product of Oracle Fusion Middleware component: Dashboard. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2022-21626
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerabili...
CVE-2022-21626
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerabili...
Buffer overflow
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerabili...
Design/Logic Flaw
Vulnerability in the MySQL Installer product of Oracle MySQL component: Installer: General. Supported versions that are affected are 1.6.3 and prior. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Installer executes to compromise MyS...
UBUNTU-CVE-2022-21628
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Lightweight HTTP Server. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0...
CVE-2022-22227
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated network-based attacker to cause a partial Denial of Service DoS. On receipt of specific IPv6 transit traffic,...
CVE-2022-39404
Vulnerability in the MySQL Installer product of Oracle MySQL component: Installer: General. Supported versions that are affected are 1.6.3 and prior. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Installer executes to compromise MyS...
Oracle MySQL 安全漏洞
Oracle MySQL Server is a relational database from Oracle Corporation. An information disclosure vulnerability exists in the Installer: General component of Oracle MySQL Installer 1.6.3 and earlier versions. An attacker can exploit this vulnerability to corrupt MySQL Installer and perform...
CVE-2022-39409
Vulnerability in the Oracle Transportation Management product of Oracle Supply Chain component: Business Process Automation. Supported versions that are affected are 6.4.3 and 6.5.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle...
CVE-2022-21626
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerabili...
Oracle Java SE 安全漏洞
Oracle Java SE is an American Oracle Oracle company for the development and deployment of desktop, server, and embedded devices and real-time environments in Java applications. A security vulnerability exists in Oracle Java SE versions 8u341, 8u345 perf, 11.0.16.1, Oracle GraalVM Enterprise Editi...
PT-2022-5282 · Mysql Server · Mysql Installer
Name of the Vulnerable Software and Affected Versions: MySQL Installer versions 1.6.3 and prior Description: The issue allows a low-privileged attacker with logon to the infrastructure where MySQL Installer executes to compromise MySQL Installer. Successful attacks require human interaction from ...
PT-2022-14981 · Oracle · Oracle Communications Billing/Revenue Management
Name of the Vulnerable Software and Affected Versions: Oracle Communications Billing and Revenue Management versions 12.0.0.4.0 through 12.0.0.7.0 Description: The issue allows an unauthenticated attacker with network access via TCP to compromise Oracle Communications Billing and Revenue...
Oracle Communications Billing and Revenue Management 安全漏洞
Oracle Communications Billing and Revenue Management is a communications billing and revenue management system from Oracle that provides a fully converged, real-time enterprise revenue management application. This unified platform manages, maximizes, and converts each revenue stream into revenue...
CVE-2022-21610
CVE-2022-21610 affects Oracle Solaris 11, specifically the LDoms component. The vulnerability allows a low-privileged, locally authenticated attacker with user interaction to read a subset of Solaris data and cause a partial denial of service. Public sources consistently cite a CVSS v3.1 base sco...
CVE-2022-21591
Vulnerability in the Oracle Transportation Management product of Oracle Supply Chain component: UI Infrastructure. Supported versions that are affected are 6.4.3 and 6.5.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2022-21590
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware component: Core Formatting API. Supported versions that are affected are 5.9.0.0, 6.4.0.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
DRUPAL-CONTRIB-2022-058
This module enables themers to get partial data from field render arrays. It gives them more control over the output without drilling deep into the render array or using preprocess functions. The module doesn't sufficiently apply access restrictions when using the filters field\label, field\value...
CVE-2022-2720
In affected versions of Octopus Server it was identified that when a sensitive value is a substring of another value, sensitive value masking will only partially work...