Oracle Corporation

742 tracked vulnerabilities.

CVE-2017-3331 MEDIUM
MySQL Server 5.7.11-5.7.17 - Authenticated Denial of Service in Server: DML
Apr 24, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-3329 HIGH
MySQL Server <= 5.5.54, 5.6.35, 5.7.17 - Unauthenticated Denial of Service in Thread Pooling
Apr 24, 2017
CVSS 7.5
EPSS 0.03
CVE-2017-3309 HIGH
MySQL Server <= 5.5.54, <= 5.6.35, <= 5.7.17 - Authenticated Denial of Service in Server Optimizer
Apr 24, 2017
CVSS 7.7
EPSS 0.00
CVE-2017-3308 HIGH
MySQL Server <= 5.5.54, <= 5.6.35, <= 5.7.17 - Authenticated Denial of Service via DML Subcomponent
Apr 24, 2017
CVSS 7.7
EPSS 0.00
CVE-2017-3307 LOW
MySQL Enterprise Monitor <= 3.3.2.1162 - Authenticated DoS and Data Manipulation
Apr 24, 2017
CVSS 3.1
EPSS 0.00
CVE-2017-3306 HIGH
Oracle MySQL Enterprise Monitor <= 3.3.2.1162 - Unauthorized Data Access and Partial DoS
Apr 24, 2017
CVSS 8.3
EPSS 0.00
CVE-2017-3305 MEDIUM
MySQL Server 5.5.0-5.5.55 and 5.6.0-5.6.35 - Cleartext Transmission of Sensitive Information
Apr 24, 2017
CVSS 5.3
EPSS 0.00
CVE-2017-3304 MEDIUM
MySQL Cluster < 7.2.27, 7.3.16, 7.4.14, 7.5.5 - DoS and Data Manipulation
Apr 24, 2017
CVSS 5.4
EPSS 0.00
CVE-2017-3288 MEDIUM
Oracle FLEXCUBE Investor Servicing 12.0.1-12.3.0 - Authenticated SQL Injection in Unit Trust
Apr 24, 2017
CVSS 5.4
EPSS 0.00
CVE-2017-3254 HIGH
Oracle Retail Invoice Matching 12.0 and 13.0 - Unauthenticated Data Access and Partial Denial of Service via HTTP
Apr 24, 2017
CVSS 7.6
EPSS 0.01
CVE-2017-3237 HIGH
Oracle Support Tools <5.7 - Privilege Escalation
Apr 24, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-3234 CRITICAL
Oracle Support Tools <5.7 - Unauthenticated RCE
Apr 24, 2017
CVSS 9.8
EPSS 0.02
CVE-2017-3233 HIGH
Oracle Support Tools <5.7 - Unauthenticated RCE
Apr 24, 2017
CVSS 7.5
EPSS 0.02
CVE-2017-3232 MEDIUM
Oracle Support Tools <5.7 - Privilege Escalation
Apr 24, 2017
CVSS 5.5
EPSS 0.00
CVE-2017-3230 HIGH
Oracle Fusion Middleware MapViewer 11.1.1.9/12.2.1.1/12.2.1.2 - Unauthenticated Data Manipulation and DoS via HTTP
Apr 24, 2017
CVSS 8.6
EPSS 0.06
CVE-2017-3302 HIGH
Oracle MySQL < 5.6.21 and 5.7.x < 5.7.5 - Use-After-Free in libmysqlclient.so
Feb 12, 2017
CVSS 7.5
EPSS 0.03
CVE-2016-5551 LOW
Oracle Solaris Cluster 4.3 - Unauthenticated Improper Access Control in NAS Device Addition
Apr 24, 2017
CVSS 2.8
EPSS 0.00
Products
MySQL Server 87 Java 60 PeopleSoft Enterprise PT PeopleTools 36 Oracle VM VirtualBox 32 Solaris Operating System 22 FLEXCUBE Private Banking 19 Oracle Java SE 17 WebCenter Sites 16 FLEXCUBE Universal Banking 15 Hospitality Suite8 15 Oracle GraalVM Enterprise Edition 15 Oracle Berkeley DB 14 Oracle GraalVM for JDK 14 BI Publisher (formerly XML Publisher) 13 PeopleSoft Enterprise PRTL Interaction Hub 12 WebLogic Server 12 Hospitality Simphony 10 Agile PLM Framework 9 Automatic Service Request (ASR) 9 Hospitality OPERA 5 Property Services 8 Hospitality Reporting and Analytics 8 FLEXCUBE Enterprise Limits and Collateral Management 7 Hospitality Guest Access 7 Marketing 7 Oracle Database 7 Oracle Identity Manager Connector 7 Primavera P6 Enterprise Project Portfolio Management 7 Sun ZFS Storage Appliance Kit (AK) Software 7 Application Object Library 6 Hospitality Hotel Mobile 6
Quick Filters
Critical CVEs With Exploits In CISA KEV