oracle

10,202 tracked vulnerabilities.

CVE-2021-4157 HIGH
Linux Kernel 4.0-4.4.268 - Memory Corruption in NFS Mirroring
Mar 25, 2022
CVSS 8.0
EPSS 0.00
CVE-2021-4197 HIGH
Linux Kernel 4.2-4.14.276 - Privilege Escalation via Unprivileged Write to File Handler
Mar 23, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-38296 HIGH
Apache Spark <3.1.2 - Info Disclosure
Mar 10, 2022
CVSS 7.5
EPSS 0.02
CVE-2021-3737 HIGH
Python >=3.6.0 <3.6.14 - Denial of Service via HTTP Response Handling
Mar 04, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-3744 MEDIUM
Linux Kernel < 5.15 - Use-After-Free in ccp_run_aes_gcm_cmd
Mar 04, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-3743 HIGH
Linux Kernel 5.14.1-5.16 - Out-of-Bounds Read in Qualcomm IPC Router Protocol
Mar 04, 2022
CVSS 7.1
EPSS 0.00
CVE-2021-4002 MEDIUM
Linux Kernel < 5.16 - Use-After-Free in hugetlbfs Memory Mapping
Mar 03, 2022
CVSS 4.4
EPSS 0.00
CVE-2021-3772 MEDIUM
Linux Kernel < 5.15.0 - Denial of Service via Spoofed SCTP Chunks
Mar 02, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-44533 MEDIUM
Node.js Certificate Validation Flaw via Multi-Value RDN
Feb 24, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-44532 MEDIUM
Node.js < 12.22.9, < 14.18.3, < 16.13.2, < 17.3.1 - Code Injection
Feb 24, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-44531 HIGH
Node.js < 12.22.9, < 14.18.3, < 16.13.2, < 17.3.1 - Improper Certificate Validation via URI SAN Type
Feb 24, 2022
CVSS 7.4
EPSS 0.00
CVE-2021-35689 CRITICAL
Oracle Talent Acquisition Cloud - Taleo Enterprise Edition - RCE
Feb 24, 2022
CVSS 9.8
EPSS 0.03
CVE-2021-4115 MEDIUM
polkit - Unauthenticated Denial of Service via File Descriptor Exhaustion
Feb 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-20322 HIGH
Linux Kernel < 5.14.21 - UDP Port Scan via ICMP Error Message Processing
Feb 18, 2022
CVSS 7.4
EPSS 0.00
CVE-2021-3773 CRITICAL
Linux Kernel < 5.14 - Exposure of Sensitive Information via netfilter
Feb 16, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-3752 HIGH
Linux Kernel 2.6.12-4.4.293 - Use-After-Free via Bluetooth Socket Race Condition
Feb 16, 2022
CVSS 7.1
EPSS 0.00
CVE-2021-3551 HIGH
dogtagpki 10.10.0-10.10.5 - Cleartext Storage of Sensitive Information in Installation Log File
Feb 16, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-43859 HIGH
XStream <1.4.19 - DoS
Feb 01, 2022
CVSS 7.5
EPSS 0.02
CVE-2021-4160 MEDIUM
OpenSSL 1.0.2-1.0.2zb, 1.1.1-1.1.1l, 3.0.0 - Carry Propagation Bug in MIPS32/MIPS64 Squaring Procedure
Jan 28, 2022
CVSS 5.9
EPSS 0.00
CVE-2021-4034 HIGH KEV
Local Privilege Escalation in polkits pkexec
Jan 28, 2022
CVSS 7.8
EPSS 0.88
CVE-2021-22570 MEDIUM
Google Protobuf < 3.15.0 - Null Pointer Dereference via Proto Symbol Parsing
Jan 26, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-35687 MEDIUM
Oracle Financial Services Analytical Applications Infrastructure <8...
Jan 19, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-35686 MEDIUM
Oracle Financial Services Analytical Applications Infrastructure <8...
Jan 19, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-35683 CRITICAL
Oracle Essbase Administration Services < 11.1.2.4.047 - Remote Code Execution via EAS Console
Jan 19, 2022
CVSS 9.9
EPSS 0.02
CVE-2021-35587 CRITICAL KEVNUCLEI
Oracle Fusion Middleware - OpenSSO Agent - Unauthenticated RCE
Jan 19, 2022
CVSS 9.8
EPSS 0.94
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV