oracle
10,484 tracked vulnerabilities.
CVE-2022-25313
MEDIUM
libexpat < 2.4.5 - Denial of Service via DTD Element Nesting
Feb 18, 2022
CVSS 6.5
EPSS 0.03
CVE-2022-23632
HIGH
Traefik < 2.6.1 - Improper Certificate Validation via FQDN Host Header
Feb 17, 2022
CVSS 7.4
EPSS 0.02
CVE-2022-25236
CRITICAL
libexpat < 2.4.5 - Namespace URI Injection via Namespace-Separator Character
Feb 16, 2022
CVSS 9.8
EPSS 0.34
CVE-2022-25235
CRITICAL
libexpat < 2.4.5 - Improper Encoding or Escaping of Output
Feb 16, 2022
CVSS 9.8
EPSS 0.05
CVE-2022-0391
HIGH
Python <3.10.0b1-3.6.14 - Code Injection
Feb 09, 2022
CVSS 7.5
EPSS 0.08
CVE-2022-0286
MEDIUM
Linux Kernel - Denial of Service via Null Pointer Dereference in bond_ipsec_add_sa()
Jan 31, 2022
CVSS 5.5
EPSS 0.01
CVE-2022-23181
HIGH
Apache Tomcat 8.5.55-8.5.73, 9.0.35-9.0.56, 10.0.0-M5-10.0.14, 10.1.0-M1-10.1.0-M8 - TOCTOU Race Condition in FileStore
Jan 27, 2022
CVSS 7.0
EPSS 0.01
CVE-2022-23990
HIGH
libexpat < 2.4.4 - Integer Overflow in doProlog Function
Jan 26, 2022
CVSS 7.5
EPSS 0.04
CVE-2022-23437
MEDIUM
Apache Xerces-J < 2.12.1 - Denial of Service via Infinite Loop in XML Parser
Jan 24, 2022
CVSS 6.5
EPSS 0.04
CVE-2022-23852
CRITICAL
libexpat < 2.4.4 - Integer Overflow in XML_GetBuffer
Jan 24, 2022
CVSS 9.8
EPSS 0.05
CVE-2022-23221
CRITICAL
H2 Console <2.1.210 - RCE
Jan 19, 2022
CVSS 9.8
EPSS 0.65
CVE-2022-21403
MEDIUM
Oracle Communications Operations Monitor - Denial of Service
Jan 19, 2022
CVSS 6.6
EPSS 0.01
CVE-2022-21402
MEDIUM
Oracle Communications Operations Monitor <5.0 - Privilege Escalation
Jan 19, 2022
CVSS 4.8
EPSS 0.01
CVE-2022-21401
MEDIUM
Oracle Communications Operations Monitor 3.4-5.0 - Authenticated DoS and Data Manipulation via Mediation Engine
Jan 19, 2022
CVSS 6.6
EPSS 0.01
CVE-2022-21400
MEDIUM
Oracle Communications <5.0 - Info Disclosure
Jan 19, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-21399
MEDIUM
Oracle Communications Operations Monitor 3.4-5.0 - Authenticated DoS and Data Manipulation via Mediation Engine
Jan 19, 2022
CVSS 6.6
EPSS 0.01
CVE-2022-21398
MEDIUM
Oracle Communications <5.0 - Info Disclosure
Jan 19, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-21397
MEDIUM
Oracle Communications Operations Monitor <5.0 - Info Disclosure
Jan 19, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-21396
MEDIUM
Oracle Communications Operations Monitor <5.0 - Info Disclosure
Jan 19, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-21395
HIGH
Oracle Communications Operations Monitor <5.0 - RCE
Jan 19, 2022
CVSS 7.2
EPSS 0.01
CVE-2022-21394
MEDIUM
Oracle VM VirtualBox < 6.1.32 - Unauthorized Data Access
Jan 19, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-21393
MEDIUM
Oracle Database Server 12.1.0.2, 12.2.0.1, 19c, 21c - Partial Denial of Service in Java VM
Jan 19, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-21392
HIGH
Oracle Enterprise Manager <13.5.0.0 - Unauthorized Access
Jan 19, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-21391
CRITICAL
Oracle Communications Billing & Revenue Mgmt <12.0.0.3-4 - Info Dis...
Jan 19, 2022
CVSS 9.9
EPSS 0.01
CVE-2022-21390
CRITICAL
Oracle Communications Billing and Revenue Management <12.0.0.3-12.0...
Jan 19, 2022
CVSS 10.0
EPSS 0.02
Products
mysql 1,329
jre 799
jdk 787
solaris 555
database_server 516
vm_virtualbox 427
peoplesoft_enterprise_peopletools 355
e-business_suite 337
weblogic_server 322
fusion_middleware 313
mysql_server 278
linux 229
application_server 198
outside_in_technology 195
graalvm 188
jd_edwards_enterpriseone_tools 164
peoplesoft_products 158
enterprise_manager_base_platform 135
communications_cloud_native_core_policy 125
retail_xstore_point_of_service 125
zfs_storage_appliance_kit 117
enterprise_manager_ops_center 107
jrockit 107
http_server 105
webcenter_portal 100
openjdk 98
supply_chain_products_suite 97
flexcube_universal_banking 95
primavera_unifier 95
financial_services_analytical_applications_infrastructure 90
Quick Filters