CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2019-2557

Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. The supported version that is affected is 13.3.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

6.3CVSS6.7AI score

7.3CVSS7.1AI score0.01172EPSS

CVE-2019-2424

Vulnerability in the Oracle Retail Convenience Store Back Office component of Oracle Retail Applications subcomponent: Level 3 Maintenance Functions. The supported version that is affected is 3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

4.7CVSS5.8AI score0.01053EPSS

CVE-2019-2570

Vulnerability in the Siebel Core - Server BizLogic Script component of Oracle Siebel CRM subcomponent: Integration - Scripting. The supported version that is affected is 19.3. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Siebel Core -...

NVD•added 2019/04/23 7:32 p.m.•9 views

CVE-2019-2424

7.5CVSS6.2AI score0.01172EPSS

NVD•added 2019/04/23 7:32 p.m.•26 views

CVE-2019-2570

6.5CVSS3.7AI score0.01053EPSS

CVE-2018-3312

Vulnerability in the Oracle Retail Customer Engagement component of Oracle Retail Applications subcomponent: Segment. Supported versions that are affected are 16.0 and 17.0. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Retail...

5.5CVSS5.8AI score

NVD•added 2019/04/23 7:32 p.m.•15 views

CVE-2018-3312

6CVSS4.5AI score0.00875EPSS

Prion•added 2019/04/23 7:32 p.m.•10 views

Design/Logic Flaw

Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Container. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5CVSS4.8AI score0.0152EPSS

CVE•added 2019/04/23 6:16 p.m.•43 views

CVE-2019-2610

CVE-2019-2610 describes a vulnerability in Oracle Outside In Technology (Outside In Filters). The Red Hat and IBM bulletin data indicate that Oracle Outside In Technology is used as a component in Rational DOORS Next Generation, with affected Rational DOORS NG versions 6.0.6 and 6.0.6.1. The vuln...

6.5CVSS5.8AI score0.01462EPSS

Cvelist•added 2019/04/23 6:16 p.m.•22 views

CVE-2019-2610

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware subcomponent: Outside In Filters. Supported versions that are affected are 8.5.3 and 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

5.9AI score0.01462EPSS

Vulnrichment•added 2019/04/23 6:16 p.m.•8 views

CVE-2019-2570

5.7AI score0.01053EPSS

CVE•added 2019/04/23 6:16 p.m.•47 views

CVE-2019-2570

The CVE-2019-2570 issue affects Oracle Siebel CRM, specifically the Siebel Core - Server BizLogic Script component (subcomponent: Integration - Scripting). Affected version is 19.3. The underlying problem allows an attacker with network access via HTTP and high privileges to impact Siebel Core - ...

6.5CVSS4.4AI score0.01053EPSS

Vulnrichment•added 2019/04/23 6:16 p.m.•7 views

CVE-2019-2576

5.8AI score0.0152EPSS

Cvelist•added 2019/04/23 6:16 p.m.•25 views

CVE-2019-2577

Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite subcomponent: File Locking Services. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to...

2.7AI score0.0037EPSS

CVE•added 2019/04/23 6:16 p.m.•39 views

CVE-2019-2424

CVE-2019-2424 affects Oracle Retail Applications — Retail Convenience Store Back Office, subcomponent Level 3 Maintenance Functions, version 3.6. The vulnerability allows an unauthenticated attacker over the network (HTTP) to read, update, insert or delete data, and may cause partial denial of se...

7.5CVSS6.6AI score0.01172EPSS

Positive Technologies•added 2019/04/23 12:0 a.m.•3 views

PT-2019-16446 · Oracle +5 · Oracle Berkeley Db +5

Name of the Vulnerable Software and Affected Versions: Oracle Berkeley DB versions prior to 6.138 Oracle Berkeley DB versions prior to 6.2.38 Oracle Berkeley DB versions prior to 18.1.32 Description: A vulnerability in the Data Store component of Oracle Berkeley DB allows a low-privileged attacke...

3.3CVSS4AI score0.00599EPSS

Exploits0References32

RedHat Linux•added 2019/03/25 6:25 p.m.•2 views

JDK: unspecified vulnerability fixed in 8u201 (Deployment)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. The supported version that is affected is Java SE: 8u192. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks...

3.1CVSS7.4AI score0.02716EPSS

Exploits0References5

BDU FSTEC•added 2019/03/22 12:0 a.m.•3 views

The vulnerability of the TIFFPrintDirectory function in the LibTIFF library, which allows a hacker to cause a partial service failure.

The vulnerability of the TIFFPrintDirectory function tifprint.c in the LibTIFF library is related to the use of a null pointer. Exploiting this vulnerability could allow an attacker to cause partial service failure remotely...

6.5CVSS6.3AI score0.03069EPSS

Exploits1References6Affected Software5

CNVD•added 2019/03/01 12:0 a.m.•2 views

McAfee Agent Denial of Service Vulnerability

The McAfee Agent is a distributed component of McAfee ePolicy Orchestrator McAfee ePO that downloads and enforces policies, performs client-side tasks such as deployments and updates, and also uploads events and provides other data about the status of each system. A denial of service vulnerabilit...

5.3CVSS6.6AI score0.01851EPSS