oracle

10,484 tracked vulnerabilities.

CVE-2025-30711 MEDIUM
Oracle Applications Framework 12.2.3-12.2.14 - Authenticated Improper Access Control in Attachments File Upload
Apr 15, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-30710 MEDIUM
MySQL Cluster 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Authenticated Denial of Service in NDBCluster Plugin
Apr 15, 2025
CVSS 4.9
EPSS 0.01
CVE-2025-30709 MEDIUM
Oracle JD Edwards EnterpriseOne Tools 9.2.0.0-9.2.9.2 - Unauthenticated Improper Access Control via Web Runtime SEC
Apr 15, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30708 HIGH
Oracle User Management 12.2.4-12.2.14 - Unauthenticated Unauthorized Data Access via Search and Register Users
Apr 15, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-30707 HIGH
Oracle iStore 12.2.3-12.2.14 - Unauthenticated Unauthorized Data Access via User Management
Apr 15, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-30706 HIGH
Oracle MySQL Connectors 9.0.0-9.2.0 - Incorrect Default Permissions
Apr 15, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-30705 MEDIUM
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Authenticated Denial of Service in Server: PS
Apr 15, 2025
CVSS 4.9
EPSS 0.01
CVE-2025-30704 MEDIUM
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Authenticated Denial of Service via Components Services
Apr 15, 2025
CVSS 4.4
EPSS 0.01
CVE-2025-30703 LOW
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Authenticated Unauthorized Data Manipulation in InnoDB
Apr 15, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-30702 MEDIUM
Oracle Fleet Patching and Provisioning 19.3-19.26 - Unauthenticated Exposure of Sensitive Information via HTTP
Apr 15, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-30701 HIGH
Oracle RAS Security 19.3-19.26, 21.3-21.17, 23.4-23.7 - Unauthorized Data Access and Modification via Oracle Net
Apr 15, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-30700 LOW
Oracle Solaris 11 - Unauthorized Data Access via Pluggable Authentication Module
Apr 15, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-30699 MEDIUM
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Authenticated Denial of Service in Stored Procedure
Apr 15, 2025
CVSS 4.9
EPSS 0.01
CVE-2025-30698 MEDIUM
Oracle Java SE 8u441, 11.0.26, 17.0.14, 21.0.6, 24; GraalVM - Unauthenticated Improper Access Control in 2D
Apr 15, 2025
CVSS 5.6
EPSS 0.01
CVE-2025-30697 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.60-8.62 - Authenticated Improper Access Control in Panel Processor
Apr 15, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-30696 MEDIUM
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Authenticated Denial of Service via Multiple Protocols
Apr 15, 2025
CVSS 4.9
EPSS 0.01
CVE-2025-30695 MEDIUM
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - DoS and Data Manipulation in InnoDB
Apr 15, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-30694 MEDIUM
Oracle XML Database 19.3-19.26, 21.3-21.17, 23.4-23.7 - Authenticated Improper Access Control via HTTP
Apr 15, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-30693 MEDIUM
Oracle MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - DoS and Data Manipulation in InnoDB
Apr 15, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-30692 MEDIUM
Oracle iSupplier Portal 12.2.7-12.2.14 - Unauthorized Data Access via Attachments Component
Apr 15, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-30691 MEDIUM
Oracle GraalVM for JDK 21.0.6 and 24 - Unauthenticated Improper Access Control via Compiler APIs
Apr 15, 2025
CVSS 4.8
EPSS 0.01
CVE-2025-30690 HIGH
Oracle Solaris 11 - Authenticated Privilege Escalation in Filesystem
Apr 15, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-30689 MEDIUM
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Authenticated Denial of Service in Server Optimizer
Apr 15, 2025
CVSS 4.9
EPSS 0.01
CVE-2025-30688 MEDIUM
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Denial of Service in Optimizer
Apr 15, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-30687 MEDIUM
MySQL Server 8.0.0-8.0.41, 8.4.0-8.4.4, 9.0.0-9.2.0 - Denial of Service in Server Optimizer
Apr 15, 2025
CVSS 6.5
EPSS 0.01