oracle

10,202 tracked vulnerabilities.

CVE-2024-21019 MEDIUM
Oracle E-Business Suite LOV <12.2.13 - Info Disclosure
Apr 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21018 MEDIUM
Oracle Complex Maintenance, Repair, and Overhaul 12.2.3-12.2.13 - Unauthenticated Improper Authorization
Apr 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21017 MEDIUM
Oracle E-Business Suite LOV <12.2.13 - Info Disclosure
Apr 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21016 MEDIUM
Oracle E-Business Suite <12.2.14 - Info Disclosure
Apr 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21015 MEDIUM
MySQL Server <= 8.0.34 and 8.3.0 - Authenticated Denial of Service and Data Manipulation via DML
Apr 16, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-21014 CRITICAL
Oracle Hospitality Simphony 19.1.0-19.5.4 - Unauthenticated Remote Code Execution via HTTP
Apr 16, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-21013 MEDIUM
MySQL Server <= 8.0.36 and 8.3.0 - Authenticated Denial of Service in Optimizer
Apr 16, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-21012 LOW
Oracle GraalVM and JDK - Unauthenticated Data Manipulation via Networking Component
Apr 16, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-21011 LOW
Oracle GraalVM and JDK - Unauthenticated Partial Denial of Service via Hotspot Component
Apr 16, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-21010 CRITICAL
Oracle Hospitality Simphony 19.1.0-19.5.4 - Authenticated Remote Code Execution via HTTP
Apr 16, 2024
CVSS 9.9
EPSS 0.01
CVE-2024-21009 MEDIUM
MySQL Server <= 8.0.36 and 8.3.0 - Authenticated Denial of Service in Optimizer
Apr 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-21008 MEDIUM
MySQL Server <= 8.0.36 and 8.3.0 - Authenticated Denial of Service in Optimizer
Apr 16, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-21007 HIGH
Oracle WebLogic Server 12.2.1.4.0/14.1.1.0.0 - Unauthenticated Critical Function Access via T3/IIOP
Apr 16, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21006 HIGH
Oracle WebLogic Server 12.2.1.4.0 and 14.1.1.0.0 - Unauthenticated Unauthorized Data Access via T3, IIOP
Apr 16, 2024
CVSS 7.5
EPSS 0.87
CVE-2024-21005 LOW
Oracle Java SE <8u401 & Oracle GraalVM EE <21.3.9 - Info Disclosure
Apr 16, 2024
CVSS 3.1
EPSS 0.00
CVE-2024-21004 LOW
Oracle GraalVM 20.3.13, 21.3.9 and Oracle Java SE 8u401 - Unauthenticated Incorrect Default Permissions in JavaFX
Apr 16, 2024
CVSS 2.5
EPSS 0.00
CVE-2024-21003 LOW
Oracle Java SE <8u401, Oracle GraalVM EE <21.3.9 - Info Disclosure
Apr 16, 2024
CVSS 3.1
EPSS 0.00
CVE-2024-21002 LOW
Oracle GraalVM 20.3.13, 21.3.9 and Oracle Java SE 8u401 - Unauthenticated Incorrect Default Permissions in JavaFX
Apr 16, 2024
CVSS 2.5
EPSS 0.00
CVE-2024-21001 MEDIUM
Oracle Analytics - BI Platform Security <7.0.0.0.0 - Info Disclosure
Apr 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-21000 LOW
Oracle MySQL <8.0.36 and <8.3.0 - Privilege Escalation
Apr 16, 2024
CVSS 3.8
EPSS 0.00
CVE-2024-20999 HIGH
Oracle Solaris <11 - Privilege Escalation
Apr 16, 2024
CVSS 8.2
EPSS 0.00
CVE-2024-20998 MEDIUM
MySQL Server <= 8.0.36 and 8.3.0 - Authenticated Denial of Service via Server Optimizer
Apr 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-20997 CRITICAL
Oracle Hospitality Simphony <19.5.4 - RCE
Apr 16, 2024
CVSS 9.9
EPSS 0.01
CVE-2024-20995 LOW
Oracle Database Server 19.3-19.22 and 21.3-21.13 - Authenticated Partial Denial of Service in Sharding Component
Apr 16, 2024
CVSS 2.4
EPSS 0.00
CVE-2024-20994 MEDIUM
MySQL Server <= 8.0.36 and 8.3.0 - Authenticated Denial of Service in Information Schema
Apr 16, 2024
CVSS 5.3
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV