oracle

10,202 tracked vulnerabilities.

CVE-2024-21286 MEDIUM
Oracle PeopleSoft <9.2 - Info Disclosure
Oct 15, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-21285 HIGH
Oracle Banking Liquidity Management 14.5.0.12.0 - Incorrect Authorization in Reports
Oct 15, 2024
CVSS 7.1
EPSS 0.01
CVE-2024-21284 HIGH
Oracle Banking Liquidity Management 14.5.0.12.0 - Incorrect Authorization in Reports
Oct 15, 2024
CVSS 7.1
EPSS 0.01
CVE-2024-21283 HIGH
Oracle PeopleSoft Enterprise HCM Global Payroll Core 9.2.48-9.2.50 - Incorrect Authorization via HTTP
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21282 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Incorrect Authorization in Common Components
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21281 MEDIUM
Oracle Banking Liquidity Management 14.7.0.6.0 - HTTP Request Smuggling
Oct 15, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-21280 HIGH
Oracle Service Contracts 12.2.5-12.2.13 - Unauthorized Data Access and Modification in Authoring Component
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21279 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Authenticated Incorrect Authorization in Auctions
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21278 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Unauthorized Data Access and Modification in Award Processes
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21277 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Authenticated Incorrect Authorization in Device Integration
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21276 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Authenticated Incorrect Authorization in Messages Component
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21275 HIGH
Oracle E-Business Suite 12.2.7-12.2.13 - Authenticated Incorrect Authorization in User Interface
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21274 HIGH
Oracle WebLogic Server 12.2.1.4.0-14.1.1.0.0 - Unauthenticated Denial of Service via HTTP
Oct 15, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-21273 MEDIUM
Oracle VM VirtualBox <7.0.22-7.1.2 - Privilege Escalation
Oct 15, 2024
CVSS 6.0
EPSS 0.00
CVE-2024-21272 HIGH
MySQL Connector/Python <= 9.0.0 - Authenticated Remote Takeover via Multiple Protocols
Oct 15, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21271 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Incorrect Authorization in Field Service Engineer Portal
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21270 HIGH
Oracle E-Business Suite 12.2.6-12.2.13 - Authenticated Incorrect Authorization in Tasks Component
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21269 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Authenticated Incorrect Authorization in Compensation Plan
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21268 HIGH
Oracle E-Business Suite 12.2.11-12.2.13 - Incorrect Authorization in Oracle Applications Manager Diagnostics
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21267 HIGH
Oracle E-Business Suite 12.2.12-12.2.13 - Authenticated Incorrect Authorization in Cost Planning
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21266 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Authenticated Incorrect Authorization in Price List
Oct 15, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21265 HIGH
Oracle E-Business Suite 12.2.3-12.2.13 - Authenticated Incorrect Authorization in Site Hierarchy Flows
Oct 15, 2024
CVSS 8.1
EPSS 0.02
CVE-2024-21264 MEDIUM
Oracle PeopleSoft 9.2 - Unauthorized Update
Oct 15, 2024
CVSS 5.4
EPSS 0.01
CVE-2024-21263 MEDIUM
Oracle VM VirtualBox < 7.0.22 - Denial of Service and Unauthorized Data Read
Oct 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21262 MEDIUM
MySQL Connectors <= 9.0.0 - Unauthenticated Incorrect Authorization
Oct 15, 2024
CVSS 6.5
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV