oracle

10,202 tracked vulnerabilities.

CVE-2021-4083 HIGH
Linux Kernel <5.16-rc4 - Use After Free
Jan 18, 2022
CVSS 7.0
EPSS 0.00
CVE-2021-42392 CRITICAL
H2 < 2.0.204 - Insecure Deserialization
Jan 10, 2022
CVSS 9.8
EPSS 0.91
CVE-2021-22569 HIGH
protobuf-java < 3.16.1 - Denial of Service via UnknownFieldSet Field Interleaving
Jan 10, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-22060 MEDIUM
Spring Framework <5.3.13, <5.2.18 - Info Disclosure
Jan 10, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-45943 MEDIUM
GDAL 3.3.0-3.4.0 - Heap-Based Buffer Overflow in PCIDSK File Reader
Jan 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-4185 HIGH
Wireshark 3.4.0-3.4.10 and 3.6.0 - Denial of Service via RTMPT Dissector Infinite Loop
Dec 30, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-4184 HIGH
Wireshark 3.4.0-3.4.10 and 3.6.0 - Denial of Service via BitTorrent DHT Dissector Infinite Loop
Dec 30, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-4183 MEDIUM
Wireshark 3.6.0 - Denial of Service in pcapng File Parser
Dec 30, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-4182 HIGH
Wireshark 3.4.0-3.4.10 and 3.6.0 - Denial of Service via RFC 7468 Dissector
Dec 30, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-4181 HIGH
Wireshark 3.4.0-3.4.10 - Denial of Service via Sysdig Event Dissector
Dec 30, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-44832 MEDIUM
Apache Log4j 2.0-beta7-2.17.0 - Remote Code Execution via JDBC Appender JNDI LDAP Data Source
Dec 28, 2021
CVSS 6.6
EPSS 0.54
CVE-2021-45486 LOW
Linux Kernel < 5.12.4 - Information Disclosure via IPv4 Route Hash Table
Dec 25, 2021
CVSS 3.5
EPSS 0.00
CVE-2021-45485 HIGH
Linux Kernel < 5.13.3 - Information Disclosure via IPv6 Source Address Hash Table
Dec 25, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-44790 CRITICAL
Apache HTTP Server < 2.4.52 - Buffer Overflow in mod_lua Multipart Parser
Dec 20, 2021
CVSS 9.8
EPSS 0.86
CVE-2021-44224 HIGH
Apache HTTP Server 2.4.7-2.4.51 - NULL Pointer Dereference and Server-Side Request Forgery via Forward Proxy
Dec 20, 2021
CVSS 8.2
EPSS 0.09
CVE-2021-45105 MEDIUM
Apache Log4j 2.0-alpha1-2.16.0 - Denial of Service via Thread Context Map Self-Referential Lookup
Dec 18, 2021
CVSS 5.9
EPSS 0.75
CVE-2021-23450 HIGH
dojo < 1.17.0 - Prototype Pollution via setObject Function
Dec 17, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-34141 MEDIUM
NumPy < 1.22.0 - Incorrect String Comparison in numpy.core
Dec 17, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-4104 HIGH
Apache Log4j 1.2 - Remote Code Execution via JMSAppender JNDI Requests
Dec 14, 2021
CVSS 7.5
EPSS 0.72
CVE-2021-43818 HIGH
lxml < 4.6.5 - Cross-Site Scripting via HTML Cleaner Bypass
Dec 13, 2021
CVSS 8.2
EPSS 0.05
CVE-2021-43797 MEDIUM
Netty <4.1.71.Final - HTTP Request Smuggling
Dec 09, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-43527 CRITICAL
NSS <3.73-3.68.1 ESR - Buffer Overflow
Dec 08, 2021
CVSS 9.8
EPSS 0.05
CVE-2021-42717 HIGH
OWASP ModSecurity 2.8.0-2.9.4 and 3.0.0-3.0.5 - Denial of Service via Excessively Nested JSON Objects
Dec 07, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-41165 HIGH
CKEditor < 4.17.0 - Stored Cross-Site Scripting via Malformed HTML Comment Bypass
Nov 17, 2021
CVSS 8.2
EPSS 0.00
CVE-2021-41164 HIGH
CKEditor 4 < 4.17.0 - Stored Cross-Site Scripting via Advanced Content Filter Bypass
Nov 17, 2021
CVSS 8.2
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV