oracle
10,484 tracked vulnerabilities.
CVE-2024-21205
MEDIUM
Oracle Fusion Middleware 12.2.1.4.0 - Unauthorized Data Access via OSB Core Functionality
Oct 15, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-21204
MEDIUM
MySQL Server 8.4.0 and 9.0.1 and prior - Denial of Service via Uncontrolled Resource Consumption
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21203
MEDIUM
MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Authenticated Denial of Service in FTS
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21202
MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.59, 8.60, 8.61 - Cross-Site Request Forgery
Oct 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21201
MEDIUM
MySQL Server < 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in Optimizer
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21200
MEDIUM
MySQL Server < 8.0.35 - Authenticated Denial of Service in Optimizer
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21199
MEDIUM
MySQL <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in InnoDB
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21198
MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in DDL Component
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21197
MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in Information Schema
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21196
MEDIUM
MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Denial of Service in X Plugin
Oct 15, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-21195
HIGH
Oracle BI Publisher 7.0.0.0.0, 7.6.0.0.0, 12.2.1.4.0 - Unauthorized Data Access and Partial DoS
Oct 15, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-21194
MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in InnoDB
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21193
MEDIUM
MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Authenticated Denial of Service
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21192
MEDIUM
Oracle Enterprise Manager <12.2.1.4.0 - Privilege Escalation
Oct 15, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-21191
HIGH
Oracle Enterprise Manager <12.2.1.4.0 - Info Disclosure
Oct 15, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-21190
HIGH
Oracle Fusion Middleware <12.2.1.4.0 - Unauthenticated RCE
Oct 15, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-21172
CRITICAL
Oracle Hospitality OPERA <5.6.26.4 - RCE
Oct 15, 2024
CVSS 9.0
EPSS 0.00
CVE-2024-21188
MEDIUM
Oracle Financial Services Revenue Management and Billing 6.0.0.0.0/6.1.0.0.0 - Unauthenticated XSS in Chatbot
Jul 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21185
MEDIUM
MySQL Server 8.0.38, 8.4.1, 9.0.0 - Denial of Service in InnoDB
Jul 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21184
HIGH
Oracle Database <19.23 - Privilege Escalation
Jul 16, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-21183
HIGH
Oracle WebLogic Server 12.2.1.4.0/14.1.1.0.0 - Unauthenticated Critical Function Access via T3/IIOP
Jul 16, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-21182
HIGH
KEV
Oracle WebLogic Server <14.1.1.0.0 - Unauthorized Access
Jul 16, 2024
CVSS 7.5
EPSS 0.50
CVE-2024-21181
CRITICAL
Oracle WebLogic Server <14.1.1.0.0 - RCE
Jul 16, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-21180
MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.59, 8.60, 8.61 - Unauthorized Data Access via OpenSearch Dashboards
Jul 16, 2024
CVSS 4.1
EPSS 0.00
CVE-2024-21179
MEDIUM
MySQL Server < 8.0.37 - Authenticated Denial of Service in InnoDB
Jul 16, 2024
CVSS 4.9
EPSS 0.01
Products
mysql 1,329
jre 799
jdk 787
solaris 555
database_server 516
vm_virtualbox 427
peoplesoft_enterprise_peopletools 355
e-business_suite 337
weblogic_server 322
fusion_middleware 313
mysql_server 278
linux 229
application_server 198
outside_in_technology 195
graalvm 188
jd_edwards_enterpriseone_tools 164
peoplesoft_products 158
enterprise_manager_base_platform 135
communications_cloud_native_core_policy 125
retail_xstore_point_of_service 125
zfs_storage_appliance_kit 117
enterprise_manager_ops_center 107
jrockit 107
http_server 105
webcenter_portal 100
openjdk 98
supply_chain_products_suite 97
flexcube_universal_banking 95
primavera_unifier 95
financial_services_analytical_applications_infrastructure 90
Quick Filters