CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1963 matches found

Saint•added 2012/08/17 12:0 a.m.•20 views

Oracle Business Transaction Management FlashTunnelService WriteToFile Vulnerability

Added: 08/17/2012 BID: 54839 Background Oracle Business Transaction Management BTM is a component of several Oracle Enterprise Manager Management Packs, including WebLogic Server Management Pack Enterprise Edition. Oracle BTM provides capability in three key areas: transaction visibility,...

8.1AI score

Exploits0

Tenable Nessus•added 2012/08/01 12:0 a.m.•73 views

Scientific Linux Security Update : java (jdk 1.6.0) on SL4.x, SL5.x i386/x86_64

This update fixes several vulnerabilities in the Java 6 Software Development Kit. Further information about these flaws can be found on the 'Oracle Java SE and Java for Business Critical Patch Update Advisory' page. CVE-2010-1321, CVE-2010-3541, CVE-2010-3548, CVE-2010-3549, CVE-2010-3550,...

10CVSS7.7AI score0.87264EPSS

Exploits29References30

Tenable Nessus•added 2012/07/19 12:0 a.m.•30 views

Oracle Database Multiple Vulnerabilities (July 2012 CPU)

The remote Oracle database server is missing the July 2012 Critical Patch Update CPU and is, therefore, potentially affected by security issues in the following components : - Enterprise Manager - Network Layer - Core RDBMS %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

6.8CVSS5.3AI score0.0251EPSS

Exploits0References7

Oracle•added 2012/07/19 12:0 a.m.•14 views

Oracle Critical Patch Update - April 2012

A Critical Patch Update is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update advisories...

10CVSS6.6AI score0.68914EPSS

Exploits24

CISA•added 2012/07/18 12:0 a.m.•7 views

Oracle Releases Critical Patch Update for July 2012

Oracle has released its Critical Patch Update for July 2012 to address 87 vulnerabilities across multiple products. This update contains the following security fixes: 4 for Oracle Database Server 1 for Oracle Application Express Listener 2 for Oracle Secure Backup 22 for Oracle Fusion Middleware ...

6.7AI score

Exploits0References2

Oracle•added 2012/07/17 12:0 a.m.•1472 views

Oracle Critical Patch Update - July 2012

A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update...

10CVSS0.98945EPSS

Exploits64Affected Software27

CERT•added 2012/07/17 12:0 a.m.•55 views

Oracle Outside In contains multiple exploitable vulnerabilities

Overview Oracle Outside In contains multiple exploitable vulnerabilities in its parsers, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Oracle Outside In is a set of libraries that can decode over 500 different file formats...

2.1CVSS6.7AI score0.01182EPSS

Exploits0References6

Oracle•added 2012/07/17 12:0 a.m.•14 views

Oracle Critical Patch Update - July 2012

10CVSS8.8AI score0.98945EPSS

Exploits64

OpenVAS•added 2012/07/09 12:0 a.m.•28 views

RedHat Update for qemu-kvm RHSA-2011:1777-01

Check for the Version of qemu-kvm OpenVAS Vulnerability Test RedHat Update for qemu-kvm RHSA-2011:1777-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

6.8CVSS6.4AI score0.02258EPSS

Exploits0References2

securityvulns•added 2012/06/17 12:0 a.m.•103 views

[SE-2012-01] Regarding Oracle's Critical Patch Update for Java SE

Dear All, Yesterday, Oracle released its Critical Patch Update for Java SE software 1, which incorporates fixes for 3 of more than 20+ security issues that were reported to the company in Apr 2012 2. We would like to inform, that while some of the Proof of Concept codes we developed for the...

6.7AI score

Exploits0

Symantec•added 2012/06/15 8:0 a.m.•30 views

Symantec LiveUpdate Administrator 2.3 Insecure File Permissions

SUMMARY Symantec LiveUpdate Administrator 2.3 and prior install some files with insecure file permissions during a default installation. These files allow full control permission to everyone which could result in arbitrary command execution with elevated privileges on the system. AFFECTED PRODUCT...

6.9CVSS0.2AI score0.00347EPSS

Exploits1Affected Software1

CISA•added 2012/06/13 12:0 a.m.•17 views

Oracle Releases Critical Patch Update for June 2012

Oracle released its Critical Patch Update for June 2012 containing 14 security fixes for the following products: JDK and JRE 7 Updates 4 and earlier JDK and JRE 6 Update 32 and earlier JDK and JRE 5.0 Update 35 and earlier SDK and JRE 1.4.237 and earlier JavaFX 2.1 and earlier US-CERT encourages...

6.6AI score

Exploits0References1

securityvulns•added 2012/04/22 12:0 a.m.•72 views

SQL Injection in Oracle Enterprise Manager (compareWizFirstConfig web page) (CVE-2012-0512)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory SQL Injection in Oracle Enterprise Manager compareWizFirstConfig web page. Risk Level: High Affected versions: Oracle Enterprise Manager Database Control 11.1.0.7, 11.2.0.2 and previous patchsets Oracle...

5.5CVSS6.9AI score0.01097EPSS

Exploits2

0day.today•added 2012/04/20 12:0 a.m.•71 views

Oracle Enterprise Manager SQL injection Vulnerability

Exploit for jsp platform in category web applications -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory SQL Injection in Oracle Enterprise Manager compareWizFirstConfig web page. Risk Level: High Affected versions: Oracle Enterprise Manager Database Control...

7.1AI score0.01097EPSS

Exploits3

ThreatPost•added 2012/04/19 2:20 a.m.•58 views

Oracle Patches 88 Vulnerabilities, Including Some that Allow Remote Exploits Without Authentication

Oracle yesterday released 88 security fixes for vulnerabilities — including several that allow for remote access without authentication — across its portfolio as part of its quarterly Critical Patch Update. “Due to the threat posed by a successful attack, Oracle strongly recommends that customers...

9CVSS0.7AI score0.68914EPSS

Exploits9References4

Packet Storm•added 2012/04/19 12:0 a.m.•59 views

Oracle Enterprise Manager compareWizFirstConfig SQL injection

5.5CVSS0.9AI score0.01097EPSS

Exploits2

CISA•added 2012/04/18 12:0 a.m.•15 views

Oracle Releases Critical Patch Update for April 2012

Oracle has released its Critical Patch Update for April 2012 to address 88 vulnerabilities across multiple products. This updates contains the following security fixes: 6 for Oracle Database Server 11 for Oracle Fusion Middleware 6 for Oracle Enterprise Manager Grid Control 4 for Oracle E-Busines...

6.9AI score

Exploits0References1

Saint•added 2012/03/30 12:0 a.m.•75 views

Java SE AtomicReferenceArray Unsafe Security Bypass

Added: 03/30/2012 CVE: CVE-2012-0507 BID: 52161 OSVDB: 80724 Background Java is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. Java...

10CVSS9.7AI score0.98237EPSS

Exploits13

Saint•added 2012/03/30 12:0 a.m.•76 views

Java SE AtomicReferenceArray Unsafe Security Bypass

10CVSS9.8AI score0.98237EPSS

Exploits13

Saint•added 2012/03/30 12:0 a.m.•69 views

Java SE AtomicReferenceArray Unsafe Security Bypass

10CVSS9.7AI score0.98237EPSS

Exploits13

Rows per page