oracle
10,484 tracked vulnerabilities.
CVE-2022-24801
HIGH
Twisted < 22.4.0 - HTTP Request Smuggling via Non-Conformant HTTP Request Parsing
Apr 04, 2022
CVSS 8.1
EPSS 0.03
CVE-2022-22965
CRITICAL
KEVNUCLEI
Spring Framework - Remote Code Execution via Data Binding
Apr 01, 2022
CVSS 9.8
EPSS 1.00
CVE-2022-22963
CRITICAL
KEVNUCLEI
Spring Cloud Function < 3.1.6 - Remote Code Execution via SpEL Routing Expression
Apr 01, 2022
CVSS 9.8
EPSS 1.00
CVE-2022-1154
HIGH
vim < 8.2.4646 - Use-After-Free in utf_ptr2char
Mar 30, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-0322
MEDIUM
Linux Kernel < 5.15 - Denial of Service via SCTP Buffer Overflow in sctp_make_strreset_req
Mar 25, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-1011
HIGH
Linux Kernel < 5.17 - Use-After-Free in FUSE Filesystem via write()
Mar 18, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-24729
MEDIUM
CKEditor 4.0-4.17.2 - Denial of Service via Dialog Input Validator Regex
Mar 16, 2022
CVSS 6.5
EPSS 0.02
CVE-2022-24728
MEDIUM
CKEditor 4 < 4.18.0 - Stored Cross-Site Scripting via HTML Sanitization Bypass
Mar 16, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-23943
CRITICAL
Apache HTTP Server <2.4.52 - Memory Corruption
Mar 14, 2022
CVSS 9.8
EPSS 0.50
CVE-2022-22721
CRITICAL
Apache HTTP Server < 2.4.52 - Integer Overflow via Large Request Body Handling
Mar 14, 2022
CVSS 9.1
EPSS 0.42
CVE-2022-22720
CRITICAL
Apache HTTP Server < 2.4.52 - HTTP Request Smuggling via Inbound Connection Handling
Mar 14, 2022
CVSS 9.8
EPSS 0.28
CVE-2022-22719
HIGH
Apache HTTP Server <2.4.52 - Memory Corruption
Mar 14, 2022
CVSS 7.5
EPSS 0.70
CVE-2022-0002
MEDIUM
Intel Celeron N4000 and Atom Processors - Information Disclosure via Branch Predictor Sharing
Mar 11, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-0001
MEDIUM
Intel Atom and Celeron Processors - Information Disclosure via Branch Predictor Selector Sharing
Mar 11, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-22946
MEDIUM
Spring Cloud Gateway - Improper Certificate Validation
Mar 04, 2022
CVSS 5.5
EPSS 0.05
CVE-2022-0839
CRITICAL
liquibase < 4.8.0 - XML External Entity Injection
Mar 04, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-22947
CRITICAL
KEVNUCLEI
Spring Cloud Gateway Remote Code Execution
Mar 03, 2022
CVSS 10.0
EPSS 0.98
CVE-2022-21716
HIGH
Twisted 21.7.0-22.1.0 - Denial of Service via SSH Version Identifier Buffer Overflow
Mar 03, 2022
CVSS 7.5
EPSS 0.04
CVE-2022-23308
HIGH
libxml2 < 2.9.13 - Use-After-Free in valid.c
Feb 26, 2022
CVSS 7.5
EPSS 0.06
CVE-2022-24329
MEDIUM
JetBrains Kotlin <1.6.0 - Info Disclosure
Feb 25, 2022
CVSS 5.3
EPSS 0.02
CVE-2022-21824
HIGH
Node.js 12.0.0-12.22.8 and 17.0.0-17.3.0 - Prototype Pollution via console.table() Properties Parameter
Feb 24, 2022
CVSS 8.2
EPSS 0.22
CVE-2022-25636
HIGH
Linux Kernel 5.4-5.6.10 - Privilege Escalation via nf_dup_netdev Heap Out-of-Bounds Write
Feb 24, 2022
CVSS 7.8
EPSS 0.03
CVE-2022-24407
HIGH
Cyrus SASL 2.1.17-2.1.27 - SQL Injection via Unescaped Password in SQL Plugin
Feb 24, 2022
CVSS 8.8
EPSS 0.04
CVE-2022-25315
CRITICAL
libexpat < 2.4.5 - Integer Overflow in storeRawNames
Feb 18, 2022
CVSS 9.8
EPSS 0.05
CVE-2022-25314
HIGH
libexpat < 2.4.5 - Integer Overflow in copyString
Feb 18, 2022
CVSS 7.5
EPSS 0.05
Products
mysql 1,329
jre 799
jdk 787
solaris 555
database_server 516
vm_virtualbox 427
peoplesoft_enterprise_peopletools 355
e-business_suite 337
weblogic_server 322
fusion_middleware 313
mysql_server 278
linux 229
application_server 198
outside_in_technology 195
graalvm 188
jd_edwards_enterpriseone_tools 164
peoplesoft_products 158
enterprise_manager_base_platform 135
communications_cloud_native_core_policy 125
retail_xstore_point_of_service 125
zfs_storage_appliance_kit 117
enterprise_manager_ops_center 107
jrockit 107
http_server 105
webcenter_portal 100
openjdk 98
supply_chain_products_suite 97
flexcube_universal_banking 95
primavera_unifier 95
financial_services_analytical_applications_infrastructure 90
Quick Filters