oracle

10,202 tracked vulnerabilities.

CVE-2024-21198 MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in DDL Component
Oct 15, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21197 MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in Information Schema
Oct 15, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21196 MEDIUM
MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Denial of Service in X Plugin
Oct 15, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-21195 HIGH
Oracle BI Publisher 7.0.0.0.0, 7.6.0.0.0, 12.2.1.4.0 - Unauthorized Data Access and Partial DoS
Oct 15, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-21194 MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in InnoDB
Oct 15, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21193 MEDIUM
MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Authenticated Denial of Service
Oct 15, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21192 MEDIUM
Oracle Enterprise Manager <12.2.1.4.0 - Privilege Escalation
Oct 15, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-21191 HIGH
Oracle Enterprise Manager <12.2.1.4.0 - Info Disclosure
Oct 15, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-21190 HIGH
Oracle Fusion Middleware <12.2.1.4.0 - Unauthenticated RCE
Oct 15, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-21172 CRITICAL
Oracle Hospitality OPERA <5.6.26.4 - RCE
Oct 15, 2024
CVSS 9.0
EPSS 0.03
CVE-2024-21188 MEDIUM
Oracle Financial Services Revenue Management and Billing 6.0.0.0.0/6.1.0.0.0 - Unauthenticated XSS in Chatbot
Jul 16, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21185 MEDIUM
MySQL Server 8.0.38, 8.4.1, 9.0.0 - Denial of Service in InnoDB
Jul 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21184 HIGH
Oracle Database <19.23 - Privilege Escalation
Jul 16, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-21183 HIGH
Oracle WebLogic Server 12.2.1.4.0/14.1.1.0.0 - Unauthenticated Critical Function Access via T3/IIOP
Jul 16, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21182 HIGH
Oracle WebLogic Server <14.1.1.0.0 - Unauthorized Access
Jul 16, 2024
CVSS 7.5
EPSS 0.88
CVE-2024-21181 CRITICAL
Oracle WebLogic Server <14.1.1.0.0 - RCE
Jul 16, 2024
CVSS 9.8
EPSS 0.02
CVE-2024-21180 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.59, 8.60, 8.61 - Unauthorized Data Access via OpenSearch Dashboards
Jul 16, 2024
CVSS 4.1
EPSS 0.01
CVE-2024-21179 MEDIUM
MySQL Server < 8.0.37 - Authenticated Denial of Service in InnoDB
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21178 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.59, 8.60, 8.61 - Unauthenticated Cross-Site Scripting in Portal
Jul 16, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21177 MEDIUM
MySQL Server < 8.0.37 and 8.4.0 - Authenticated Denial of Service in Server Optimizer
Jul 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-21176 MEDIUM
MySQL Server < 8.4.0 - Authenticated Denial of Service in Thread Pooling
Jul 16, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-21175 HIGH
Oracle WebLogic Server 12.2.1.4.0 and 14.1.1.0.0 - Unauthenticated Out-of-bounds Write via HTTP
Jul 16, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-21174 LOW
Oracle Database Server 19.3-19.23, 21.3-21.14, 23.4 - Partial Denial of Service in Java VM
Jul 16, 2024
CVSS 3.1
EPSS 0.00
CVE-2024-21173 MEDIUM
MySQL < 8.0.37 and 8.4.0 - Authenticated Denial of Service in InnoDB
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21171 MEDIUM
MySQL Server 8.0.0-8.0.37 and 8.4.0 - Denial of Service in Optimizer
Jul 16, 2024
CVSS 6.5
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV