Amazon Linux AMI : mysql55 (ALAS-2018-1116)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Client programs. Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the...

Authorization Bypass

mysql-connector-java is vulnerable to authorization bypass. A low privileged remote attacker with network access via multiple protocols is able to exploit and compromise MySQL connectors leading to a complete takeover of the subcomponent...

Unspecified Vulnerability in Oracle Virtualization VM VirtualBox Component (CNVD-2019-36167)

Oracle Virtualization is a set of virtualization solutions from Oracle Corporation. The solution is used to unify the management of the entire hardware and software system from applications to disks, enabling virtualization from the desktop to the data center.VM VirtualBox is one of the virtual...

Unspecified Vulnerability in Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Component (CNVD-2019-28246)

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle that provides human capital management, financial management, supplier relationship management, and more.PeopleSoft Enterprise PeopleTools is one of the tools and technology platform components that...

Unspecified Vulnerability in Oracle Java SE (CNVD-2019-26730)

Oracle Java SE is the United States Oracle Oracle company's set of standard version of the Java platform for the development and deployment of desktop, server, and embedded devices and real-time environments in the Java application. A security vulnerability exists in the Utility subcomponent of...

Code injection

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2018-24267)

Oracle E-Business Suite E-Business Suite is a set of Oracle's fully integrated global business management software.Applications Manager is one of the components used to monitor the performance and availability of Oracle application servers. A security vulnerability exists in the None subcomponent...

Unspecified Vulnerability in Oracle WebLogic Server (CNVD-2018-24315)

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle. The platform provides middleware, software collection, etc. WebLogic Server is one of the application server components for cloud and traditional...

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2018-21615)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: DML subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.12 and earlier. An attacke...

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2018-21802)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: Parser subcomponent of the MySQL Server component of Oracle MySQL. An attacker can exploit this...

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2018-21804)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the MySQL Server component of Oracle MySQL, version 5.7.23 and earlier, and the Server: Security: Audit subcompone...

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2018-21477)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: JSON subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.12 and earlier. An attack...

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2018-21474)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: DDL subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.12 and earlier. An attacke...

Unspecified Vulnerability in Oracle Java SE, Java SE Embedded and JRockit (CNVD-2019-26739)

Oracle Java SE is a product of Oracle Corporation. Oracle Java SE is a Java platform for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. Oracle Java SE Embedded is a Java platform for embedded systems and portable applications...

Unspecified Vulnerability in Oracle Java SE and Java SE Embedded (CNVD-2019-26735)

Oracle Java SE is the standard version of Oracle's Java platform for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments, and Java SE and Java SE Embedded are components of Java SE Embedded, a Java platform for developing powerful,...

Unspecified Vulnerability in Oracle Java SE and Java SE Embedded (CNVD-2019-26736)

Oracle Java SE is the standard version of Oracle's Java platform for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments, and Java SE and Java SE Embedded are components of Java SE Embedded, a Java platform for developing powerful,...

Unspecified Vulnerability in Oracle Java SE and Java SE Embedded (CNVD-2019-26727)

Oracle Java SE is the standard version of Oracle's Java platform for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments, and Java SE and Java SE Embedded are components of Java SE Embedded, a Java platform for developing powerful,...

Amazon Linux 2 : mariadb (ALAS-2018-1078)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Optimizer. Supported versions that are affected are 5.5.57 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successf...

Security update for java-11-openjdk (moderate)

This java-11-openjdk update to version jdk-11+24 fixes the following issues: Security issues fixed: - CVE-2018-2940: Fix unspecified vulnerability in subcomponent Libraries bsc1101645. - CVE-2018-2952: Fix unspecified vulnerability in subcomponent Concurrency bsc1101651. - CVE-2018-2972: Fix...

Unspecified Vulnerability in Oracle Virtualization VM VirtualBox Component (CNVD-2019-36180)

Oracle Virtualization is a set of virtualization solutions from Oracle Corporation. The solution is used to unify the management of the entire hardware and software system from applications to disks, enabling virtualization from the desktop to the data center.VM VirtualBox is one of the virtual...