oracle
10,484 tracked vulnerabilities.
CVE-2024-21151
LOW
Oracle Solaris 11 - Authenticated Partial Denial of Service in Filesystem
Jul 16, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-21150
MEDIUM
Oracle JD Edwards EnterpriseOne Tools < 9.2.8.2 - Unauthenticated Improper Access Control via Web Runtime SEC
Jul 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21149
HIGH
Oracle Enterprise Asset Management 12.2.11-12.2.13 - Incorrect Authorization in Work Definition Issues
Jul 16, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-21148
MEDIUM
Oracle E-Business Suite - Privilege Escalation
Jul 16, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-21147
HIGH
Netapp Active IQ Unified Manager - Information Disclosure
Jul 16, 2024
CVSS 7.4
EPSS 0.01
CVE-2024-21146
HIGH
Oracle Trade Management 12.2.3-12.2.13 - Authenticated Unauthorized Data Access and Modification via GL Accounts
Jul 16, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-21145
MEDIUM
Oracle GraalVM 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1 - Improper Access Control in 2D Component
Jul 16, 2024
CVSS 4.8
EPSS 0.01
CVE-2024-21144
LOW
Oracle Java SE 8u411, 11.0.23 & GraalVM EE 20.3.14, 21.3.10 - Partial DoS in Concurrency
Jul 16, 2024
CVSS 3.7
EPSS 0.01
CVE-2024-21143
MEDIUM
Oracle iStore 12.2.3-12.2.13 - Unauthenticated Out-of-bounds Read via HTTP
Jul 16, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-21142
MEDIUM
MySQL Server: Security: Privileges < 8.0.37 and <= 8.4.0 - Authenticated Denial of Service
Jul 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21141
HIGH
Oracle VM VirtualBox < 7.0.20 - Privilege Escalation in Core Component
Jul 16, 2024
CVSS 8.2
EPSS 0.00
CVE-2024-21140
MEDIUM
Netapp Bluexp - Information Disclosure
Jul 16, 2024
CVSS 4.8
EPSS 0.01
CVE-2024-21139
MEDIUM
Oracle Analytics <12.2.1.4.0 - Info Disclosure
Jul 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-21138
LOW
Netapp Active IQ Unified Manager - Denial of Service
Jul 16, 2024
CVSS 3.7
EPSS 0.01
CVE-2024-21137
MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Denial of Service in Optimizer
Jul 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21136
HIGH
NUCLEI
Oracle Retail Xstore Office <=23.0.1 - Unauthenticated Sensitive Information Exposure
Jul 16, 2024
CVSS 8.6
EPSS 0.02
CVE-2024-21135
MEDIUM
MySQL Server < 8.0.36 and 8.3.0 - Authenticated Denial of Service in Optimizer
Jul 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21134
MEDIUM
MySQL Server < 8.0.37 and 8.4.0 - Authenticated Partial Denial of Service in Connection Handling
Jul 16, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-21133
MEDIUM
Oracle Reports Developer 12.2.1.4.0 and 12.2.1.19.0 - Unauthenticated Cross-Site Scripting via Servlet
Jul 16, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21132
MEDIUM
Oracle Purchasing 12.2.3-12.2.13 - Authenticated Improper Access Control in Approvals
Jul 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-21131
LOW
Oracle Java SE <22.0.1 - Info Disclosure
Jul 16, 2024
CVSS 3.7
EPSS 0.01
CVE-2024-21130
MEDIUM
MySQL Server < 8.0.37 and <= 8.4.0 - Denial of Service in Optimizer
Jul 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21129
MEDIUM
MySQL Server < 8.0.37 and <= 8.4.0 - Authenticated Denial of Service in DDL Component
Jul 16, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-21128
MEDIUM
Oracle E-Business Suite <12.2.14 - Info Disclosure
Jul 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-21127
MEDIUM
MySQL Server < 8.0.37 and 8.4.0 - Denial of Service in DDL Component
Jul 16, 2024
CVSS 4.9
EPSS 0.01
Products
mysql 1,329
jre 799
jdk 787
solaris 555
database_server 516
vm_virtualbox 427
peoplesoft_enterprise_peopletools 355
e-business_suite 337
weblogic_server 322
fusion_middleware 313
mysql_server 278
linux 229
application_server 198
outside_in_technology 195
graalvm 188
jd_edwards_enterpriseone_tools 164
peoplesoft_products 158
enterprise_manager_base_platform 135
communications_cloud_native_core_policy 125
retail_xstore_point_of_service 125
zfs_storage_appliance_kit 117
enterprise_manager_ops_center 107
jrockit 107
http_server 105
webcenter_portal 100
openjdk 98
supply_chain_products_suite 97
flexcube_universal_banking 95
primavera_unifier 95
financial_services_analytical_applications_infrastructure 90
Quick Filters