oracle

10,202 tracked vulnerabilities.

CVE-2022-21422 HIGH
Oracle Communications Billing <12.0.0.4-12.0.0.5 - Takeover
Apr 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-21421 HIGH
Oracle Business Intelligence Enterprise Edition - Info Disclosure
Apr 19, 2022
CVSS 7.5
EPSS 0.05
CVE-2022-21420 CRITICAL
Oracle Coherence 12.2.1.3.0, 12.2.1.4.0, 14.1.1.0.0 - Unauthenticated Remote Code Execution via T3
Apr 19, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-21419 MEDIUM
Oracle Fusion Middleware - Visual Analyzer - Unauthenticated RCE
Apr 19, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-21418 MEDIUM
MySQL Server < 8.0.28 - Authenticated Denial of Service and Data Manipulation in InnoDB
Apr 19, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-21417 MEDIUM
MySQL <= 5.7.37 and <= 8.0.28 - Authenticated Denial of Service in InnoDB
Apr 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21416 MEDIUM
Oracle Solaris 11 - Privilege Escalation
Apr 19, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-21415 MEDIUM
MySQL Server <= 8.0.28 - Authenticated Denial of Service in Replication Component
Apr 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21414 MEDIUM
MySQL Server < 8.0.28 - Authenticated Denial of Service in Optimizer
Apr 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21413 MEDIUM
MySQL Server <= 8.0.28 - Authenticated Denial of Service in Server: DML
Apr 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21412 MEDIUM
MySQL Server <= 8.0.28 - Authenticated Denial of Service in Optimizer
Apr 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21411 MEDIUM
Oracle Database Server <21c - Privilege Escalation
Apr 19, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-21410 HIGH
Oracle Database Server 19c - Privilege Escalation
Apr 19, 2022
CVSS 7.2
EPSS 0.01
CVE-2022-21409 MEDIUM
Oracle JD Edwards Web Runtime <9.2.6.3 - RCE
Apr 19, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-21405 MEDIUM
Oracle Explorer 18.3 - Privilege Escalation
Apr 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21404 HIGH
Oracle Helidon 1.4.10 and 2.0.0-RC1 - Unauthenticated Remote Code Execution via HTTP
Apr 19, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-22968 MEDIUM
Spring Framework <5.3.18,<5.2.20 - Info Disclosure
Apr 14, 2022
CVSS 5.3
EPSS 0.21
CVE-2022-24839 HIGH
Nokogiri nekohtml < 1.9.22.noko2 - Denial of Service via Malformed HTML Markup
Apr 11, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-24801 HIGH
Twisted < 22.4.0 - HTTP Request Smuggling via Non-Conformant HTTP Request Parsing
Apr 04, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-22965 CRITICAL KEVNUCLEI
Spring Framework - Remote Code Execution via Data Binding
Apr 01, 2022
CVSS 9.8
EPSS 0.94
CVE-2022-22963 CRITICAL KEVNUCLEI
Spring Cloud Function < 3.1.6 - Remote Code Execution via SpEL Routing Expression
Apr 01, 2022
CVSS 9.8
EPSS 0.94
CVE-2022-1154 HIGH
vim < 8.2.4646 - Use-After-Free in utf_ptr2char
Mar 30, 2022
CVSS 7.8
EPSS 0.02
CVE-2022-0322 MEDIUM
Linux Kernel < 5.15 - Denial of Service via SCTP Buffer Overflow in sctp_make_strreset_req
Mar 25, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-1011 HIGH
Linux Kernel < 5.17 - Use-After-Free in FUSE Filesystem via write()
Mar 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-24729 MEDIUM
CKEditor 4.0-4.17.2 - Denial of Service via Dialog Input Validator Regex
Mar 16, 2022
CVSS 6.5
EPSS 0.01
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV