Lucene search
K
NetappOncommand Insight

971 matches found

CVE
CVE
added 2024/04/16 9:26 p.m.407 views

CVE-2024-21085

CVE-2024-21085 is described across multiple sources as a low-severity issue affecting Oracle Java SE and GraalVM/OpenJDK components. Affected are Oracle Java SE: 8u401, 8u401-perf, 11.0.22; Oracle GraalVM Enterprise Edition: 20.3.13, 21.3.9 (plus related OpenJDK/OpenJDK11 advisories). The vulnera...

3.7CVSS3AI score0.01276EPSS
CVE
CVE
added 2021/01/20 2:50 p.m.406 views

CVE-2021-2020

CVE-2021-2020 concerns Oracle MySQL Server (Server: Optimizer) with affected versions 8.0.20 and prior. The vulnerability can be exploited by a low-privilege attacker with network access via multiple protocols to cause the MySQL Server to hang or crash, resulting in a complete denial of service. ...

6.8CVSS6.2AI score0.02939EPSS
CVE
CVE
added 2021/01/20 2:50 p.m.406 views

CVE-2021-2030

CVE-2021-2030 affects Oracle MySQL Server (component: Server: Optimizer). Affected are MySQL Server versions 8.0.21 and earlier. A remote, high-privilege attacker with network access via multiple protocols can cause a hang or complete DoS of MySQL Server. Oracle has released updates to fix these ...

6.8CVSS4.9AI score0.02157EPSS
CVE
CVE
added 2021/04/22 9:53 p.m.406 views

CVE-2021-2230

CVE-2021-2230 affects the Oracle MySQL Server, specifically the Server: Optimizer component. Affected versions are 8.0.23 and earlier . The vulnerability can be exploited by a high-privilege attacker with network access via multiple protocols to cause a hang or crash in MySQL Server, i.e., a DoS ...

4.9CVSS4.9AI score0.01338EPSS
CVE
CVE
added 2020/04/15 1:29 p.m.404 views

CVE-2020-2757

CVE-2020-2757 affects Oracle Java SE/SE Embedded (Serialization). Vulnerable: Java SE: 7u251, 8u241, 11.0.6, 14; SE Embedded: 8u241. Impact: unauthenticated network access leading to partial DoS on Java SE/SE Embedded. Root cause: serialization-related handling in the affected component; sandboxe...

4.3CVSS4.2AI score0.04211EPSS
CVE
CVE
added 2021/01/20 2:50 p.m.404 views

CVE-2021-2065

CVE-2021-2065 affects Oracle MySQL Server (component: Server: Optimizer). Affected: MySQL 8.0.22 and earlier. Attack requires high privileges and network access; an attacker can cause a hang or crash (complete DoS) in MySQL Server. Remediation: upgrade to a patched release (e.g., MySQL 8.0.26 or ...

6.8CVSS4.9AI score0.02157EPSS
CVE
CVE
added 2021/07/20 10:43 p.m.404 views

CVE-2021-2340

CVE-2021-2340 affects Oracle MySQL Server, specifically the Memcached component, with vulnerable versions 8.0.25 and earlier. The issue can be exploited over the network via multiple protocols and may allow a high-privilege attacker to cause a partial denial of service on MySQL Server. Affected e...

4CVSS3.2AI score0.02312EPSS
CVE
CVE
added 2021/10/20 10:50 a.m.404 views

CVE-2021-35603

CVE-2021-35603 is a TLS-related vulnerability in the JSSE component of Java SE and GraalVM Enterprise Edition. Affected: Java SE 7u311, 8u301, 11.0.12, 17; GraalVM EE 20.3.3 and 21.2.0. Description indicates an unauthenticated network attacker could read data from vulnerable Java deployments (e.g...

4.3CVSS4.2AI score0.04104EPSS
CVE
CVE
added 2019/10/16 5:40 p.m.403 views

CVE-2019-2946

CVE-2019-2946 is a vulnerability in Oracle MySQL Server (component: Server: PS) affecting MySQL 5.7.27 and earlier and 8.0.17 and earlier. An attacker with network access and low privileges could cause a hang or crash (DoS) via multiple protocols. Public notices across advisories confirm affected...

6.5CVSS6.1AI score0.02693EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.403 views

CVE-2020-14697

CVE-2020-14697 affects Oracle MySQL MySQL Server (Server: Security: Privileges). Affected versions are 8.0.20 and earlier. The vulnerability is described as easily exploitable with network access via multiple protocols, allowing a high-privilege attacker to take over MySQL Server. Public referenc...

7.2CVSS6.5AI score0.02035EPSS
CVE
CVE
added 2020/04/15 1:29 p.m.403 views

CVE-2020-2830

CVE-2020-2830 affects Oracle Java SE/Java SE Embedded (Concurrency component) with Java SE versions 7u251, 8u241, 11.0.6 and 14; Java SE Embedded 8u241. The vulnerability allows unauthenticated network-based exploitation via multiple protocols, potentially enabling partial denial of service on Ja...

5.3CVSS5AI score0.04948EPSS
CVE
CVE
added 2020/07/24 9:45 p.m.403 views

CVE-2020-8174

CVE-2020-8174 is a Node.js vulnerability where napi_get_value_string_*() can trigger memory corruption in affected releases. Affected are Node.js runtimes prior to 10.21.0, 12.18.0, and prior to 14.4.0. Documented mitigations/include patches update Node.js to 10.21.0, 12.18.2, and 14.4.0 respecti...

9.3CVSS8.1AI score0.07646EPSS
CVE
CVE
added 2021/01/20 2:50 p.m.403 views

CVE-2021-2122

CVE-2021-2122 affects Oracle MySQL Server (Server: DDL). Affected: MySQL 8.0.22 and earlier. Description in the CVE notes an easily exploitable vulnerability that, with network access via multiple protocols and a high-privilege attacker, can cause the MySQL Server to hang or crash (DoS). Connecte...

6.8CVSS4.9AI score0.02157EPSS
CVE
CVE
added 2019/10/16 5:40 p.m.402 views

CVE-2019-2911

CVE-2019-2911 affects Oracle MySQL Server (Information Schema) and multiple affected versions (5.6.45 and prior; 5.7.27 and prior; 8.0.17 and prior). The vulnerability enables a high-privileged, network-accessible attacker via multiple protocols to read a subset of MySQL Server data. The initial ...

4CVSS3AI score0.02142EPSS
CVE
CVE
added 2021/10/20 10:50 a.m.402 views

CVE-2021-35578

CVE-2021-35578 affects Java SE (JSSE) and Oracle GraalVM Enterprise Edition; vulnerable are Java SE 8u301, 11.0.12, 17 and GraalVM EE 20.3.3/21.2.0. Attack requires network access via TLS to targeted APIs, with unauthenticated access and no user interaction, potentially enabling a partial denial ...

5.3CVSS5.1AI score0.06218EPSS
CVE
CVE
added 2021/04/22 9:53 p.m.401 views

CVE-2021-2174

Summary: CVE-2021-2174 αφορά la base de datos Oracle MySQL, específicamente la seguridad de InnoDB en MySQL Server. Afecta versiones 5.7.33 y anteriores y 8.0.23 y anteriores. El fallo, descrito en varias fuentes, permite a un atacante con alto nivel de privilegios y acceso en red a través de múl...

4.4CVSS4.4AI score0.01925EPSS
CVE
CVE
added 2021/10/20 10:50 a.m.401 views

CVE-2021-35588

CVE-2021-35588 is a vulnerability in Oracle Java SE and GraalVM Enterprise Edition (Hotspot component) affecting Java SE 7u311 and 8u301 and GraalVM Enterprise Edition 20.3.3/21.2.0. The issue allows an unauthenticated, network-accessible attacker to exploit multiple protocols after user interact...

3.1CVSS4.2AI score0.03599EPSS
CVE
CVE
added 2021/07/13 7:15 a.m.401 views

CVE-2021-36090

CVE-2021-36090 affects Apache Commons Compress zip handling: reading a specially crafted ZIP can allocate excessive memory, causing an out-of-memory DoS. Supported details from IBM/AWS advisories point to a fix in Commons Compress (upgrade to 1.21+; e.g., Amazon Linux advisories list apache-commo...

7.5CVSS7.5AI score0.13292EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.400 views

CVE-2020-14567

CVE-2020-14567 affects MySQL Server (Replication) and can be exploited over the network by a high-privilege attacker to cause a complete DoS via hangs/crashes. Public sources in connected docs confirm the issue across multiple distributions and indicate patches exist; applying vendor advisories/u...

4.9CVSS4.9AI score0.02162EPSS
CVE
CVE
added 2020/04/15 1:29 p.m.400 views

CVE-2020-2763

CVE-2020-2763 affects Oracle MySQL Server (Server: Replication). Affected: 5.6.47 and earlier, 5.7.29 and earlier, 8.0.19 and earlier. Exploitation via network by a high-privilege attacker can cause a hang or crash (DoS). CVSS v3.0 base 4.9 (AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). The CVE entry not...

4.9CVSS4.8AI score0.02199EPSS
CVE
CVE
added 2020/04/15 1:29 p.m.400 views

CVE-2020-2773

CVE-2020-2773 is a vulnerability in Oracle Java SE and Java SE Embedded (component: Security) that can be exploited remotely by unauthenticated attackers to cause a partial denial of service on affected Java runtimes. Affected versions include Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedde...

4.3CVSS4.2AI score0.03625EPSS
CVE
CVE
added 2020/04/15 1:29 p.m.400 views

CVE-2020-2800

CVE-2020-2800 affects Oracle Java SE/Java SE Embedded, specifically the Lightweight HTTP Server component. Affected versions include Java SE 7u251, 8u241, 11.0.6, 14 and Java SE Embedded 8u241. The vulnerability can be exploited over a network with unauthenticated access via multiple protocols, p...

5.8CVSS4.9AI score0.02879EPSS
CVE
CVE
added 2021/01/20 2:49 p.m.400 views

CVE-2021-1998

CVE-2021-1998 affects Oracle MySQL Server, specifically the Server: Optimizer component. Affected versions are 8.0.20 and earlier. The vulnerability enables a high-privilege attacker with network access via multiple protocols to compromise MySQL Server, potentially allowing unauthorized update/in...

5.5CVSS3.8AI score0.01595EPSS
CVE
CVE
added 2021/04/22 9:53 p.m.400 views

CVE-2021-2232

CVE-2021-2232 affects Oracle MySQL Server, specifically the Server: Group Replication Plugin . Affected are MySQL 8.0.23 and earlier . The initial sources describe a vulnerability that, when exploited by a high-privileged attacker with local access to the MySQL server host, can lead to a partial ...

1.9CVSS3.2AI score0.00363EPSS
CVE
CVE
added 2021/07/20 10:43 p.m.400 views

CVE-2021-2372

CVE-2021-2372 affects Oracle MySQL Server (InnoDB) with vulnerable versions 5.7.34 and earlier and 8.0.25 and earlier. The flaw allows a high-privilege attacker with network access to cause a hang or frequent crash (DoS) of MySQL Server; CVSS 3.1 base score 4.4 (Availability). Connected documents...

4.4CVSS4.5AI score0.02956EPSS
CVE
CVE
added 2024/07/16 10:39 p.m.400 views

CVE-2024-21140

CVE-2024-21140 affects Oracle Java SE and Oracle GraalVM products (Hotspot, 2D, Networking, Serialization, Concurrency). Affects multiple supported Java runtimes (e.g., Java SE 8u411/11.0.23/17.0.11/22.0.1; GraalVM JDK 17.0.11/21.0.3/22.0.1; GraalVM EE 20.3.14/21.3.10). Described as remotely expl...

4.8CVSS5.1AI score0.00879EPSS
CVE
CVE
added 2021/03/22 11:45 p.m.399 views

CVE-2021-21350

CVE-2021-21350 affects the XStream Java library. Connected sources confirm that before version 1.4.16 XStream allowed remote code execution by manipulating the processed input stream, with guidance to enable a security whitelist and upgrade to at least 1.4.16. Debian security advisories (DSA-5004...

9.8CVSS8AI score0.15234EPSS
CVE
CVE
added 2021/04/22 9:53 p.m.399 views

CVE-2021-2146

The CVE-2021-2146 entry describes a vulnerability in Oracle MySQL Server (component: Server: Options) affecting MySQL 5.7.33 and earlier and 8.0.23 and earlier. It allows a high‑privileged attacker with network access via multiple protocols to cause the server to hang or crash (DoS). Public advis...

4.9CVSS4.9AI score0.01987EPSS
CVE
CVE
added 2023/10/17 9:2 p.m.399 views

CVE-2023-22078

CVE-2023-22078 affects Oracle MySQL Server (Server: Optimizer) with affected versions 8.0.34 and earlier, and 8.1.0. An attacker with network access via multiple protocols can trigger a hang or crash (DoS) on MySQL Server, exploiting the Optimizer component. The CVSS 3.1 base score is 4.9 (Availa...

4.9CVSS5.1AI score0.0094EPSS
CVE
CVE
added 2024/08/20 7:12 a.m.399 views

CVE-2024-38808

The CVE-2024-38808 DoS in Spring Framework is triggered when an application evaluates user-supplied SpEL expressions in versions 5.3.0–5.3.38 and older unsupported releases. The vulnerability is due to how SpEL expressions may be crafted to exhaust resources, leading to denial of service. Several...

4.3CVSS4.6AI score0.00536EPSS
CVE
CVE
added 2021/04/22 9:54 p.m.398 views

CVE-2021-2293

CVE-2021-2293 affects Oracle MySQL Server (Server: Stored Procedure). Affected versions: 8.0.23 and earlier. Exploitation is possible by a high-privilege attacker with network access via multiple protocols, potentially causing a hang or crash (DoS) of MySQL Server. CVSS v3.1 base score 4.9 (Avail...

4.9CVSS5.2AI score0.01319EPSS
CVE
CVE
added 2021/07/20 10:43 p.m.397 views

CVE-2021-2354

CVE-2021-2354 affects Oracle MySQL Server (component: Server: Federated). Affected versions are 8.0.25 and earlier. The vulnerability can allow a high-privilege attacker with network access via multiple protocols to cause the MySQL Server to hang or crash (complete DoS). Connected documents provi...

6.8CVSS4.8AI score0.02831EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.396 views

CVE-2020-14593

CVE-2020-14593 is a vulnerability in the 2D component of Oracle Java SE/SE Embedded. Affected: Java SE 7u261, 8u251, 11.0.7, 14.0.1; Java SE Embedded 8u251. Vulnerability type is unspecified in the provided sources, but exploitation is described as unauthenticated with network access via multiple...

7.4CVSS7.1AI score0.03864EPSS
CVE
CVE
added 2020/10/21 2:4 p.m.396 views

CVE-2020-14672

The CVE-2020-14672 issue affects Oracle MySQL Server (Server: Stored Procedure) and impacts MySQL Server versions 5.6.49 and earlier, 5.7.31 and earlier, and 8.0.21 and earlier. It can be triggered by a network-accessible attacker to cause a hang or a frequent crash (DoS). The vulnerability arise...

6.8CVSS4.9AI score0.02404EPSS
CVE
CVE
added 2021/07/20 10:43 p.m.396 views

CVE-2021-2339

CVE-2021-2339 affects Oracle MySQL Server (component: Server: DDL). Affected are MySQL 8.0.25 and earlier. The vulnerability can be exploited remotely by a high-privilege attacker with network access via multiple protocols to cause a hang or a frequent, repeatable crash (DoS). Some connected advi...

6.8CVSS4.8AI score0.02402EPSS
CVE
CVE
added 2022/01/19 11:23 a.m.396 views

CVE-2022-21278

CVE-2022-21278 affects Oracle MySQL Server (Server: Optimizer). Public sources in connected documents describe a vulnerability due to improper input validation in the Server: Optimizer. Affected versions are 8.0.26 and earlier. Successful exploitation via network from a low-privilege, unauthentic...

7.1CVSS6.6AI score0.01197EPSS
CVE
CVE
added 2020/01/15 4:34 p.m.395 views

CVE-2020-2686

CVE-2020-2686 affects Oracle MySQL Server, specifically the Server: Optimizer component. Affected versions are 8.0.18 and earlier. The vulnerability allows a low-privileged attacker with network access via multiple protocols to potentially cause a hang or a frequently repeating crash (complete DO...

6.5CVSS6.2AI score0.02055EPSS
CVE
CVE
added 2020/04/15 1:29 p.m.395 views

CVE-2020-2853

Summary of CVE-2020-2853 (MySQL) : In Oracle MySQL Server, a vulnerability in the Server: Security: Privileges component affects 8.0.18 and earlier, enabling a highly privileged attacker with network access (via multiple protocols) to trigger a hang or crash of MySQL Server (denial of service). T...

4.9CVSS4.9AI score0.02358EPSS
CVE
CVE
added 2021/04/22 9:53 p.m.395 views

CVE-2021-2169

CVE-2021-2169 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 5.7.33 and prior, and 8.0.23 and prior. The vulnerability allows a high-privilege attacker with network access via multiple protocols to cause the MySQL Server to hang or crash (DoS). The CVSSv3.1 base...

4.9CVSS4.9AI score0.02072EPSS
CVE
CVE
added 2021/10/20 10:50 a.m.395 views

CVE-2021-35624

CVE-2021-35624 affects Oracle MySQL Server (Server: Security: Privileges). Affected versions: MySQL 5.7.35 and earlier, and 8.0.26 and earlier. Description from the CVE entry: a high‑privileged attacker with network access via multiple protocols can compromise MySQL Server, potentially leading to...

4.9CVSS4.7AI score0.01365EPSS
CVE
CVE
added 2020/01/15 4:34 p.m.394 views

CVE-2020-2577

CVE-2020-2577 affects Oracle MySQL Server: InnoDB is the vulnerable component. Affected versions are 5.7.28 and earlier, and 8.0.18 and earlier. The vulnerability allows a high-privileged attacker with network access via multiple protocols to cause a hang or crash (DoS) of MySQL Server. Connected...

4.9CVSS4.8AI score0.01931EPSS
CVE
CVE
added 2020/01/15 4:34 p.m.394 views

CVE-2020-2584

CVE-2020-2584 affects Oracle MySQL Server (component: Server: Options). Affected versions are 5.7.28 and prior, and 8.0.18 and prior. The vulnerability allows a high-privilege attacker with network access via multiple protocols to compromise MySQL Server, potentially leading to unauthorized acces...

4.4CVSS4.2AI score0.01779EPSS
CVE
CVE
added 2020/04/15 1:29 p.m.394 views

CVE-2020-2930

CVE-2020-2930 affects Oracle MySQL's MySQL Server, component Server: Parser. Affects 8.0.19 and earlier; exploitation can enable a high-privilege attacker with network access via multiple protocols to cause a hang or crash (DoS). Remediation referenced in a related package update is upgrading to ...

4.4CVSS4.3AI score0.01812EPSS
CVE
CVE
added 2021/01/20 2:50 p.m.394 views

CVE-2021-2028

CVE-2021-2028 affects Oracle MySQL Server (InnoDB) with affected versions 8.0.21 and earlier. Vulnerability details: a high-privilege attacker with network access via multiple protocols can cause a complete DoS by hanging or crashing the MySQL Server. This matches the initial vulnerability descri...

6.8CVSS4.9AI score0.02157EPSS
CVE
CVE
added 2021/07/20 10:43 p.m.394 views

CVE-2021-2352

CVE-2021-2352 affects Oracle MySQL Server (component: Server: DDL). Affected versions: 8.0.25 and earlier. An attacker with network access via multiple protocols and high privileges can cause a hang or crash of the MySQL Server, resulting in a denial of service. Remediation: upgrade to a fixed re...

6.8CVSS4.8AI score0.02831EPSS
CVE
CVE
added 2023/10/17 9:3 p.m.394 views

CVE-2023-22092

CVE-2023-22092 affects Oracle MySQL Server (Server: Optimizer) with affected versions 8.0.34 and earlier. The vulnerability allows a high-privilege attacker with network access (via multiple protocols) to cause a complete DoS of MySQL Server. No exploit details are provided in the initial documen...

4.9CVSS5.2AI score0.00925EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.393 views

CVE-2020-14539

CVE-2020-14539 affects Oracle MySQL Server (Server: Optimizer) with vulnerable versions 5.6.48 and earlier, 5.7.30 and earlier, and 8.0.20 and earlier. Exploitation can cause a hang or crash (DoS) with network access via multiple protocols. Cited connected advisories recommend upgrading to non-vu...

6.5CVSS6.2AI score0.02237EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.393 views

CVE-2020-14583

CVE-2020-14583 affects Oracle Java SE/Java SE Embedded (Libraries component). Affected: Java SE 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded 8u251. Exploitation requires network access with user interaction and can lead to takeover of Java SE/Embedded with high impact on confidentiality, int...

8.3CVSS8.2AI score0.04029EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.393 views

CVE-2020-14663

CVE-2020-14663 affects Oracle MySQL Server (component: Server: Security: Privileges). Affected: MySQL 8.0.20 and earlier. Root cause: privilege escalation through the Server security subsystem allowing a high-privilege attacker to compromise the MySQL Server over network via multiple protocols. I...

7.2CVSS6.5AI score0.02118EPSS
CVE
CVE
added 2020/01/15 4:34 p.m.393 views

CVE-2020-2573

CVE-2020-2573 affects Oracle MySQL’s C API client. Affects: MySQL Client, versions 5.7.28 and earlier, and 8.0.18 and earlier. Root cause: a vulnerability in the C API that allows an unauthenticated, network-based attacker access via multiple protocols to cause a hang or frequent, repeatable cras...

5.9CVSS5.5AI score0.03006EPSS
Total number of security vulnerabilities971