oracle

10,484 tracked vulnerabilities.

CVE-2022-24801 HIGH
Twisted < 22.4.0 - HTTP Request Smuggling via Non-Conformant HTTP Request Parsing
Apr 04, 2022
CVSS 8.1
EPSS 0.03
CVE-2022-22965 CRITICAL KEVNUCLEI
Spring Framework - Remote Code Execution via Data Binding
Apr 01, 2022
CVSS 9.8
EPSS 1.00
CVE-2022-22963 CRITICAL KEVNUCLEI
Spring Cloud Function < 3.1.6 - Remote Code Execution via SpEL Routing Expression
Apr 01, 2022
CVSS 9.8
EPSS 1.00
CVE-2022-1154 HIGH
vim < 8.2.4646 - Use-After-Free in utf_ptr2char
Mar 30, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-0322 MEDIUM
Linux Kernel < 5.15 - Denial of Service via SCTP Buffer Overflow in sctp_make_strreset_req
Mar 25, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-1011 HIGH
Linux Kernel < 5.17 - Use-After-Free in FUSE Filesystem via write()
Mar 18, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-24729 MEDIUM
CKEditor 4.0-4.17.2 - Denial of Service via Dialog Input Validator Regex
Mar 16, 2022
CVSS 6.5
EPSS 0.02
CVE-2022-24728 MEDIUM
CKEditor 4 < 4.18.0 - Stored Cross-Site Scripting via HTML Sanitization Bypass
Mar 16, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-23943 CRITICAL
Apache HTTP Server <2.4.52 - Memory Corruption
Mar 14, 2022
CVSS 9.8
EPSS 0.50
CVE-2022-22721 CRITICAL
Apache HTTP Server < 2.4.52 - Integer Overflow via Large Request Body Handling
Mar 14, 2022
CVSS 9.1
EPSS 0.42
CVE-2022-22720 CRITICAL
Apache HTTP Server < 2.4.52 - HTTP Request Smuggling via Inbound Connection Handling
Mar 14, 2022
CVSS 9.8
EPSS 0.28
CVE-2022-22719 HIGH
Apache HTTP Server <2.4.52 - Memory Corruption
Mar 14, 2022
CVSS 7.5
EPSS 0.70
CVE-2022-0002 MEDIUM
Intel Celeron N4000 and Atom Processors - Information Disclosure via Branch Predictor Sharing
Mar 11, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-0001 MEDIUM
Intel Atom and Celeron Processors - Information Disclosure via Branch Predictor Selector Sharing
Mar 11, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-22946 MEDIUM
Spring Cloud Gateway - Improper Certificate Validation
Mar 04, 2022
CVSS 5.5
EPSS 0.05
CVE-2022-0839 CRITICAL
liquibase < 4.8.0 - XML External Entity Injection
Mar 04, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-22947 CRITICAL KEVNUCLEI
Spring Cloud Gateway Remote Code Execution
Mar 03, 2022
CVSS 10.0
EPSS 0.98
CVE-2022-21716 HIGH
Twisted 21.7.0-22.1.0 - Denial of Service via SSH Version Identifier Buffer Overflow
Mar 03, 2022
CVSS 7.5
EPSS 0.04
CVE-2022-23308 HIGH
libxml2 < 2.9.13 - Use-After-Free in valid.c
Feb 26, 2022
CVSS 7.5
EPSS 0.06
CVE-2022-24329 MEDIUM
JetBrains Kotlin <1.6.0 - Info Disclosure
Feb 25, 2022
CVSS 5.3
EPSS 0.02
CVE-2022-21824 HIGH
Node.js 12.0.0-12.22.8 and 17.0.0-17.3.0 - Prototype Pollution via console.table() Properties Parameter
Feb 24, 2022
CVSS 8.2
EPSS 0.22
CVE-2022-25636 HIGH
Linux Kernel 5.4-5.6.10 - Privilege Escalation via nf_dup_netdev Heap Out-of-Bounds Write
Feb 24, 2022
CVSS 7.8
EPSS 0.03
CVE-2022-24407 HIGH
Cyrus SASL 2.1.17-2.1.27 - SQL Injection via Unescaped Password in SQL Plugin
Feb 24, 2022
CVSS 8.8
EPSS 0.04
CVE-2022-25315 CRITICAL
libexpat < 2.4.5 - Integer Overflow in storeRawNames
Feb 18, 2022
CVSS 9.8
EPSS 0.05
CVE-2022-25314 HIGH
libexpat < 2.4.5 - Integer Overflow in copyString
Feb 18, 2022
CVSS 7.5
EPSS 0.05