oracle

10,202 tracked vulnerabilities.

CVE-2021-22923 MEDIUM
curl - Metalink Feature - Auth Bypass
Aug 05, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-22922 MEDIUM
curl 7.27.0-7.77.0 - Unauthenticated Malicious Content Retention via Metalink Hash Mismatch
Aug 05, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-32804 HIGH
node-tar <6.1.1,5.0.6,4.4.14,3.3.2 - File Creation/Overwrite
Aug 03, 2021
CVSS 8.2
EPSS 0.85
CVE-2021-32803 HIGH
node-tar <6.1.2-3.2.3 - File Creation/Overwrite
Aug 03, 2021
CVSS 8.2
EPSS 0.00
CVE-2021-32066 HIGH
Ruby < 2.6.7, 2.7.x < 2.7.3, 3.x < 3.0.1 - TLS Protection Bypass via StartTLS Stripping
Aug 01, 2021
CVSS 7.4
EPSS 0.00
CVE-2021-31799 HIGH
Debian Linux < 6.3.1 - OS Command Injection
Jul 30, 2021
CVSS 7.0
EPSS 0.00
CVE-2021-22144 MEDIUM
Elasticsearch < 6.8.17 - Denial of Service via Grok Parser Recursion
Jul 26, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-36222 HIGH
MIT Kerberos <1.18.4, <1.19.2 - Use After Free
Jul 22, 2021
CVSS 7.5
EPSS 0.07
CVE-2021-37159 MEDIUM
Linux Kernel < 5.13.4 - Use-After-Free in hso_free_net_device
Jul 21, 2021
CVSS 6.4
EPSS 0.00
CVE-2021-2447 CRITICAL
Oracle Secure Global Desktop 5.6 - Remote Code Execution via Multiple Protocols
Jul 21, 2021
CVSS 9.9
EPSS 0.02
CVE-2021-2446 CRITICAL
Oracle Virtualization Client 5.6 - Info Disclosure
Jul 21, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-2445 MEDIUM
Oracle Hyperion 11.2.5.0 - Privilege Escalation
Jul 21, 2021
CVSS 5.7
EPSS 0.01
CVE-2021-2444 MEDIUM
MySQL Server < 8.0.23 - Authenticated Denial of Service in Server Optimizer
Jul 21, 2021
CVSS 4.9
EPSS 0.00
CVE-2021-2443 HIGH
Oracle VM VirtualBox <6.1.24 - Privilege Escalation
Jul 21, 2021
CVSS 7.3
EPSS 0.00
CVE-2021-2442 MEDIUM
Oracle VM VirtualBox <6.1.24 - Privilege Escalation
Jul 21, 2021
CVSS 6.0
EPSS 0.00
CVE-2021-2441 MEDIUM
MySQL Server < 8.0.25 - Authenticated Denial of Service in Server Optimizer
Jul 21, 2021
CVSS 4.9
EPSS 0.00
CVE-2021-2440 MEDIUM
MySQL Server < 8.0.25 - Authenticated Denial of Service in Server: DML
Jul 21, 2021
CVSS 4.9
EPSS 0.00
CVE-2021-2439 MEDIUM
Oracle Hyperion BI+ <11.2.5.0 - Info Disclosure
Jul 21, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-2438 MEDIUM
Oracle Database Server <19c - Partial DoS
Jul 21, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-2437 MEDIUM
MySQL Server < 8.0.25 - Authenticated Denial of Service in Server Optimizer
Jul 21, 2021
CVSS 4.9
EPSS 0.00
CVE-2021-2436 HIGH
Oracle E-Business Suite <12.2.10 - Info Disclosure
Jul 21, 2021
CVSS 8.2
EPSS 0.02
CVE-2021-2435 HIGH
Oracle Essbase 11.1.2.4 - Info Disclosure
Jul 21, 2021
CVSS 8.1
EPSS 0.02
CVE-2021-2434 HIGH
Oracle E-Business Suite <12.2.11 - RCE
Jul 21, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-2433 HIGH
Oracle Essbase Analytic Provider Services 11.1.2.4 and 21.2 - Unauthenticated Denial of Service via HTTP
Jul 21, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-2432 LOW
Oracle JDK 7u301 - Unauthenticated Partial Denial of Service via JNDI
Jul 21, 2021
CVSS 3.7
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV