Secure Global Desktop Security Vulnerabilities and Issues — Secure Global Desktop CVE List

Lucene search

OracleSecure Global Desktop

8 matches found

CVE•added 2017/06/20 1:29 a.m.•7432 views

CVE-2017-3167

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may lead to authentication requirements being bypassed.

9.8CVSS9.6AI score0.08105EPSS

CVE•added 2021/09/16 3:15 p.m.•4472 views

CVE-2021-40438

A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.

9CVSS9.5AI score0.94443EPSS

In wildWeb

CVE•added 2017/07/13 4:29 p.m.•3165 views

CVE-2017-9788

In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale ...

9.1CVSS8.4AI score0.51662EPSS

CVE•added 2019/02/06 8:29 p.m.•410 views

CVE-2019-3822

libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow. The function creating an outgoing NTLM type-3 header (lib/vauth/ntlm.c:Curl_auth_create_ntlm_type3_message()), generates the request HTTP header contents based on previously received data. The check that ...

9.8CVSS9.3AI score0.30924EPSS

CVE•added 2021/07/21 3:16 p.m.•43 views

CVE-2021-2446

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Client). The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Secure Global Deskt...

9.6CVSS9AI score0.01086EPSS

CVE•added 2021/04/22 10:15 p.m.•37 views

CVE-2021-2221

9.6CVSS8.6AI score0.02292EPSS

CVE•added 2016/10/25 2:30 p.m.•35 views

CVE-2016-5580

Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization 4.7 and 5.2 allows remote authenticated users to affect confidentiality and availability via vectors through Web Services.

9.6CVSS7.6AI score0.00502EPSS

CVE•added 2021/07/21 3:16 p.m.•30 views

CVE-2021-2447

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Server). The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Oracle Secure Global Deskto...

9.9CVSS9AI score0.01769EPSS