oracle

10,202 tracked vulnerabilities.

CVE-2024-21144 LOW
Oracle Java SE 8u411, 11.0.23 & GraalVM EE 20.3.14, 21.3.10 - Partial DoS in Concurrency
Jul 16, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-21143 MEDIUM
Oracle iStore 12.2.3-12.2.13 - Unauthenticated Out-of-bounds Read via HTTP
Jul 16, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-21142 MEDIUM
MySQL Server: Security: Privileges < 8.0.37 and <= 8.4.0 - Authenticated Denial of Service
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21141 HIGH
Oracle VM VirtualBox < 7.0.20 - Privilege Escalation in Core Component
Jul 16, 2024
CVSS 8.2
EPSS 0.00
CVE-2024-21140 MEDIUM
Netapp Bluexp - Information Disclosure
Jul 16, 2024
CVSS 4.8
EPSS 0.01
CVE-2024-21139 MEDIUM
Oracle Analytics <12.2.1.4.0 - Info Disclosure
Jul 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-21138 LOW
Netapp Active IQ Unified Manager - Denial of Service
Jul 16, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-21137 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Denial of Service in Optimizer
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21136 HIGH NUCLEI
Oracle Retail Xstore Office <=23.0.1 - Unauthenticated Sensitive Information Exposure
Jul 16, 2024
CVSS 8.6
EPSS 0.41
CVE-2024-21135 MEDIUM
MySQL Server < 8.0.36 and 8.3.0 - Authenticated Denial of Service in Optimizer
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21134 MEDIUM
MySQL Server < 8.0.37 and 8.4.0 - Authenticated Partial Denial of Service in Connection Handling
Jul 16, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-21133 MEDIUM
Oracle Reports Developer 12.2.1.4.0 and 12.2.1.19.0 - Unauthenticated Cross-Site Scripting via Servlet
Jul 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21132 MEDIUM
Oracle Purchasing 12.2.3-12.2.13 - Authenticated Improper Access Control in Approvals
Jul 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-21131 LOW
Oracle Java SE <22.0.1 - Info Disclosure
Jul 16, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-21130 MEDIUM
MySQL Server < 8.0.37 and <= 8.4.0 - Denial of Service in Optimizer
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21129 MEDIUM
MySQL Server < 8.0.37 and <= 8.4.0 - Authenticated Denial of Service in DDL Component
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21128 MEDIUM
Oracle E-Business Suite <12.2.14 - Info Disclosure
Jul 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-21127 MEDIUM
MySQL Server < 8.0.37 and 8.4.0 - Denial of Service in DDL Component
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21126 MEDIUM
Oracle Database Server 19.3-19.23 and 21.3-21.14 - Unauthenticated Partial Denial of Service via DNS
Jul 16, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-21125 MEDIUM
MySQL Server < 8.0.37 and 8.4.0 - Authenticated Denial of Service in FTS
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21123 LOW
Oracle Database Server 19.3-19.23 - Authenticated Unauthorized Data Manipulation via Core Component
Jul 16, 2024
CVSS 2.3
EPSS 0.00
CVE-2024-21122 MEDIUM
Oracle PeopleSoft Enterprise HCM Shared Components 9.2 - Unauthorized Data Access via Text Catalog
Jul 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-20996 MEDIUM
MySQL < 8.0.37 and 8.4.0 - Denial of Service in InnoDB
Jul 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21121 MEDIUM
Oracle VM VirtualBox < 7.0.16 - Unauthorized Data Access via Core Component
Apr 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-21120 MEDIUM
Oracle Outside In Technology 8.5.6 and 8.5.7 - Incorrect Authorization
Apr 16, 2024
CVSS 5.3
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV