oracle

10,202 tracked vulnerabilities.

CVE-2024-20983 MEDIUM
MySQL Server < 8.0.34 - Authenticated Denial of Service in DML Component
Jan 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-20981 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in DDL Component
Jan 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-20979 MEDIUM
Oracle BI Publisher 6.4.0.0.0, 7.0.0.0.0, 12.2.1.4.0 - Unauthorized Data Access via Web Server
Jan 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-20977 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
Jan 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20975 MEDIUM
MySQL < 8.2.0 - Authenticated Denial of Service in Server Optimizer
Jan 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20973 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
Jan 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20971 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
Jan 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-20969 MEDIUM
MySQL Server 8.0.0-8.0.35 and 8.2.0 - Authenticated Denial of Service and Unauthorized Data Modification via DDL
Jan 16, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-20967 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service and Data Manipulation via Replication
Jan 16, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-20965 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Denial of Service in Optimizer
Jan 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-20963 MEDIUM
Oracle MySQL 8.0.0-8.0.35 and 8.2.0 - Denial of Service in Server Security Encryption
Jan 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20961 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
Jan 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20959 MEDIUM
Oracle ZFS Storage Appliance Kit 8.8 - Denial of Service in Core Component
Jan 16, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-20957 LOW
Oracle JD Edwards EnterpriseOne Tools < 9.2.8.1 - Authenticated Partial Denial of Service via JDENET
Jan 16, 2024
CVSS 2.7
EPSS 0.00
CVE-2024-20955 LOW
Oracle GraalVM JDK 17.0.9/21.0.1 & Enterprise 20.3.12/21.3.8/22.3.4 - Sensitive Info Exposure
Jan 16, 2024
CVSS 3.7
EPSS 0.01
CVE-2024-20952 HIGH
Oracle Openjdk < 11.0.24 - Improper Access Control
Jan 16, 2024
CVSS 7.4
EPSS 0.00
CVE-2024-20950 MEDIUM
Oracle E-Business Suite - Info Disclosure
Jan 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20948 MEDIUM
Oracle Knowledge Management 12.2.3-12.2.13 - Unauthenticated Improper Access Control via HTTP
Jan 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20946 MEDIUM
Oracle Solaris 11 - Denial of Service in Kernel
Jan 16, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-20944 MEDIUM
Oracle iSupport 12.2.3-12.2.13 - Cross-Site Request Forgery
Jan 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-20942 MEDIUM
Oracle Complex Maintenance, Repair, and Overhaul 11.5, 12.1, 12.2 - Unauthenticated Cross-Site Request Forgery
Jan 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20940 MEDIUM
Oracle Knowledge Management 12.2.3-12.2.13 - Cross-Site Request Forgery in Authoring Flow
Jan 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20938 MEDIUM
Oracle iStore 12.2.3-12.2.13 - Unauthenticated Improper Access Control via HTTP
Jan 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20936 MEDIUM
Oracle One-to-One Fulfillment 12.2.3-12.2.13 - Unauthenticated Improper Access Control in Documents Component
Jan 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20934 MEDIUM
Oracle Installed Base 12.2.3-12.2.13 - Unauthenticated Cross-Site Request Forgery in Engineering Change Order
Jan 16, 2024
CVSS 6.1
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV