Code injection

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: SMB Server. The supported version that is affected is 11.3. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise Solaris. Successful attacks of this...

Design/Logic Flaw

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...

CVE-2018-3270

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris...

CVE-2018-3172

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: RPC. Supported versions that are affected are 10 and 11.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via Portmap v3 to compromise Solaris. Successful attacks of thi...

CVE-2018-3253

Vulnerability in the Oracle Virtual Directory component of Oracle Fusion Middleware subcomponent: Virtual Directory Manager. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

CVE-2018-3179

Vulnerability in the Oracle Identity Manager component of Oracle Fusion Middleware subcomponent: Advanced Console. Supported versions that are affected are 11.1.2.3.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

CVE-2018-3219

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware subcomponent: Outside In Filters. The supported version that is affected are 8.5.3 and 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

CVE-2018-3253

Vulnerability in the Oracle Virtual Directory component of Oracle Fusion Middleware subcomponent: Virtual Directory Manager. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

CVE-2018-3269

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: SMB Server. The supported version that is affected is 11.3. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise Solaris. Successful attacks of this...

CVE-2018-3219

CVE-2018-3219 involves Oracle Outside In Technology (Outside In Filters) used by Oracle Fusion Middleware. The initial record specifies affected versions 8.5.3 and 8.5.4 with network-accessible, unauthenticated access requiring user interaction. Connected IBM and vendor pages confirm that multipl...

CVE-2018-3268

CVE-2018-3268 affects the Solaris component of Oracle Sun Systems Products Suite, specifically the SMB Server subcomponent in Solaris 11.3. The vulnerability is exploitable over the network via SMB by an unauthenticated attacker and can lead to a partial denial of service (partial DOS) of Solaris...

CVE-2018-3253

The CVE-2018-3253 entry concerns Oracle Fusion Middleware’s Oracle Virtual Directory component (Virtual Directory Manager). Affected are 11.1.1.7.0 and 11.1.1.9.0. The vulnerability is described as exploitable by a low-privileged attacker with network access over HTTP, potentially allowing unauth...

CVE-2018-3172

CVE-2018-3172 affects Oracle Solaris (Sun Systems Products Suite) RPC component. Affected: Solaris 10 and 11.4. Vulnerability: unauthenticated attacker can trigger via Portmap v3 to compromise Solaris, potentially causing partial denial of service. Root cause and detailed impact are described in ...

CVE-2018-3220

CVE-2018-3220 concerns the Oracle Outside In Technology within Oracle Fusion Middleware (Outside In Filters). Public sources in the connected documents indicate the vulnerability affects Oracle Outside In Technology versions 8.5.3 and 8.5.4 and can be exploited over a network via HTTP. An unauthe...

CVE-2018-3263

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Sudo. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Solaris. Successful attacks o...

CVE-2018-3263

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Sudo. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Solaris. Successful attacks o...

CVE-2018-3265

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Zones. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Solaris executes to compromise Solaris...

CVE-2018-3214

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Sound. Supported versions that are affected are Java SE: 6u201, 7u191 and 8u182; Java SE Embedded: 8u181; JRockit: R28.3.19. Easily exploitable vulnerability allows unauthenticated attacker with...

CVE-2018-3180

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...

CVE-2018-3214

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Sound. Supported versions that are affected are Java SE: 6u201, 7u191 and 8u182; Java SE Embedded: 8u181; JRockit: R28.3.19. Easily exploitable vulnerability allows unauthenticated attacker with...