oracle

10,484 tracked vulnerabilities.

CVE-2024-21205 MEDIUM
Oracle Fusion Middleware 12.2.1.4.0 - Unauthorized Data Access via OSB Core Functionality
Oct 15, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-21204 MEDIUM
MySQL Server 8.4.0 and 9.0.1 and prior - Denial of Service via Uncontrolled Resource Consumption
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21203 MEDIUM
MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Authenticated Denial of Service in FTS
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21202 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.59, 8.60, 8.61 - Cross-Site Request Forgery
Oct 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21201 MEDIUM
MySQL Server < 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in Optimizer
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21200 MEDIUM
MySQL Server < 8.0.35 - Authenticated Denial of Service in Optimizer
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21199 MEDIUM
MySQL <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in InnoDB
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21198 MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in DDL Component
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21197 MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in Information Schema
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21196 MEDIUM
MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Denial of Service in X Plugin
Oct 15, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-21195 HIGH
Oracle BI Publisher 7.0.0.0.0, 7.6.0.0.0, 12.2.1.4.0 - Unauthorized Data Access and Partial DoS
Oct 15, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-21194 MEDIUM
MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in InnoDB
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21193 MEDIUM
MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Authenticated Denial of Service
Oct 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21192 MEDIUM
Oracle Enterprise Manager <12.2.1.4.0 - Privilege Escalation
Oct 15, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-21191 HIGH
Oracle Enterprise Manager <12.2.1.4.0 - Info Disclosure
Oct 15, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-21190 HIGH
Oracle Fusion Middleware <12.2.1.4.0 - Unauthenticated RCE
Oct 15, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-21172 CRITICAL
Oracle Hospitality OPERA <5.6.26.4 - RCE
Oct 15, 2024
CVSS 9.0
EPSS 0.00
CVE-2024-21188 MEDIUM
Oracle Financial Services Revenue Management and Billing 6.0.0.0.0/6.1.0.0.0 - Unauthenticated XSS in Chatbot
Jul 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21185 MEDIUM
MySQL Server 8.0.38, 8.4.1, 9.0.0 - Denial of Service in InnoDB
Jul 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21184 HIGH
Oracle Database <19.23 - Privilege Escalation
Jul 16, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-21183 HIGH
Oracle WebLogic Server 12.2.1.4.0/14.1.1.0.0 - Unauthenticated Critical Function Access via T3/IIOP
Jul 16, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-21182 HIGH KEV
Oracle WebLogic Server <14.1.1.0.0 - Unauthorized Access
Jul 16, 2024
CVSS 7.5
EPSS 0.50
CVE-2024-21181 CRITICAL
Oracle WebLogic Server <14.1.1.0.0 - RCE
Jul 16, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-21180 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.59, 8.60, 8.61 - Unauthorized Data Access via OpenSearch Dashboards
Jul 16, 2024
CVSS 4.1
EPSS 0.00
CVE-2024-21179 MEDIUM
MySQL Server < 8.0.37 - Authenticated Denial of Service in InnoDB
Jul 16, 2024
CVSS 4.9
EPSS 0.01