Oracle Corporation

742 tracked vulnerabilities.

CVE-2017-3523 HIGH
MySQL Connector/J <= 5.1.40 - Authenticated Remote Code Execution
Apr 24, 2017
CVSS 8.5
EPSS 0.02
CVE-2017-3522 MEDIUM
Oracle PeopleSoft Products 9.2 - RCE
Apr 24, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-3521 MEDIUM
Oracle PeopleSoft Products 9.2 - RCE
Apr 24, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-3520 MEDIUM
Oracle PeopleSoft Products 8.54-8.55 - RCE
Apr 24, 2017
CVSS 6.5
EPSS 0.02
CVE-2017-3519 HIGH
Oracle PeopleSoft Products <8.55 - Unauthenticated RCE
Apr 24, 2017
CVSS 7.5
EPSS 0.01
CVE-2017-3518 HIGH
Oracle Enterprise Manager Grid Control <13.2.0 - DoS
Apr 24, 2017
CVSS 7.5
EPSS 0.02
CVE-2017-3517 MEDIUM
Oracle JD Edwards EnterpriseOne Tools 9.2 - DoS and Unauthorized Data Access via HTTP
Apr 24, 2017
CVSS 6.5
EPSS 0.01
CVE-2017-3516 HIGH
Solaris 11.3 - Denial of Service in Kernel Zones Virtualized NIC Driver
Apr 24, 2017
CVSS 7.7
EPSS 0.00
CVE-2017-3515 MEDIUM
Oracle E-Business Suite 12.1.3-12.2.6 - RCE
Apr 24, 2017
CVSS 5.4
EPSS 0.01
CVE-2017-3514 HIGH
Oracle Java SE <8u121 - Info Disclosure
Apr 24, 2017
CVSS 8.3
EPSS 0.01
CVE-2017-3513 LOW
Oracle VM VirtualBox <5.0.38 & <5.1.20 - Privilege Escalation
Apr 24, 2017
CVSS 2.5
EPSS 0.00
CVE-2017-3512 HIGH
Oracle JDK and JRE - Remote Code Execution via AWT
Apr 24, 2017
CVSS 8.3
EPSS 0.03
CVE-2017-3511 HIGH
Oracle Java SE <8u121 - Privilege Escalation
Apr 24, 2017
CVSS 7.7
EPSS 0.01
CVE-2017-3510 CRITICAL
Oracle Sun Systems Products Suite 11.3 - Privilege Escalation
Apr 24, 2017
CVSS 9.6
EPSS 0.00
CVE-2017-3509 MEDIUM
Oracle Java SE <8u121 - Info Disclosure
Apr 24, 2017
CVSS 4.2
EPSS 0.00
CVE-2017-3508 CRITICAL
Oracle Primavera Products Suite - RCE
Apr 24, 2017
CVSS 9.1
EPSS 0.03
CVE-2017-3507 HIGH
Oracle Service Bus <=12.2.1.2.0 - Unauthenticated DoS and Data Manipulation via HTTP
Apr 24, 2017
CVSS 7.3
EPSS 0.01
CVE-2017-3506 HIGH KEVNUCLEI
Oracle WebLogic Server 10.3.6.0, 12.1.3.0, 12.2.1.0-12.2.1.2 - Unauthenticated OS Command Injection via HTTP
Apr 24, 2017
CVSS 7.4
EPSS 0.94
CVE-2017-3505 MEDIUM
Oracle Automatic Service Request < 5.7 - Unauthenticated Partial Denial of Service and Data Manipulation
Apr 24, 2017
CVSS 5.1
EPSS 0.00
CVE-2017-3503 CRITICAL
Oracle Primavera P6 <16.2 - Info Disclosure
Apr 24, 2017
CVSS 9.9
EPSS 0.01
CVE-2017-3502 MEDIUM
Oracle PeopleSoft Products <9.2 - Unauthenticated RCE
Apr 24, 2017
CVSS 5.3
EPSS 0.01
CVE-2017-3501 MEDIUM
Oracle Primavera Products Suite <15.2 - Info Disclosure
Apr 24, 2017
CVSS 6.1
EPSS 0.01
CVE-2017-3500 HIGH
Oracle Primavera Gateway 1.0 1.1 14.2 15.1 15.2 16.1 16.2 - Unauthorized Data Access and Denial of Service via HTTP
Apr 24, 2017
CVSS 8.7
EPSS 0.01
CVE-2017-3499 HIGH
Oracle Fusion Middleware <11.1.12.0.0 - Info Disclosure
Apr 24, 2017
CVSS 7.5
EPSS 0.01
CVE-2017-3498 LOW
Oracle Solaris 11.3 - Unauthorized Read Access via Kernel
Apr 24, 2017
CVSS 3.3
EPSS 0.00
Products
MySQL Server 87 Java 60 PeopleSoft Enterprise PT PeopleTools 36 Oracle VM VirtualBox 32 Solaris Operating System 22 FLEXCUBE Private Banking 19 Oracle Java SE 17 WebCenter Sites 16 FLEXCUBE Universal Banking 15 Hospitality Suite8 15 Oracle GraalVM Enterprise Edition 15 Oracle Berkeley DB 14 Oracle GraalVM for JDK 14 BI Publisher (formerly XML Publisher) 13 PeopleSoft Enterprise PRTL Interaction Hub 12 WebLogic Server 12 Hospitality Simphony 10 Agile PLM Framework 9 Automatic Service Request (ASR) 9 Hospitality OPERA 5 Property Services 8 Hospitality Reporting and Analytics 8 FLEXCUBE Enterprise Limits and Collateral Management 7 Hospitality Guest Access 7 Marketing 7 Oracle Database 7 Oracle Identity Manager Connector 7 Primavera P6 Enterprise Project Portfolio Management 7 Sun ZFS Storage Appliance Kit (AK) Software 7 Application Object Library 6 Hospitality Hotel Mobile 6
Quick Filters
Critical CVEs With Exploits In CISA KEV