oracle
10,484 tracked vulnerabilities.
CVE-2021-2475
MEDIUM
Oracle VM VirtualBox < 6.1.28 - Authenticated Denial of Service in Core
Oct 20, 2021
CVSS 4.4
EPSS 0.00
CVE-2021-2474
HIGH
Oracle E-Business Suite - Unauthorized Access
Oct 20, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-2471
MEDIUM
Oracle MySQL Connector/J <8.0.26 - Privilege Escalation
Oct 20, 2021
CVSS 5.9
EPSS 0.07
CVE-2021-2461
HIGH
Oracle Communications Interactive Session Recorder <6.4 - RCE
Oct 20, 2021
CVSS 8.3
EPSS 0.01
CVE-2021-2416
MEDIUM
Oracle Communications Session Border Controller 8.4-9.0 - DoS
Oct 20, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-2414
MEDIUM
Oracle Communications Session Border Controller <9.0 - RCE
Oct 20, 2021
CVSS 6.8
EPSS 0.01
CVE-2021-2332
MEDIUM
Oracle Database Server 12.1.0.2, 12.2.0.1, 19c - Authenticated Denial of Service and Data Manipulation in LogMiner
Oct 20, 2021
CVSS 6.7
EPSS 0.01
CVE-2021-2137
HIGH
Oracle Enterprise Manager <13.5.0.0 - RCE
Oct 20, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-42739
MEDIUM
Linux kernel < 5.14.13 - Out-of-bounds Write in Firewire Subsystem
Oct 20, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-37137
HIGH
Netty < 4.1.68 - Uncontrolled Resource Consumption via Snappy Frame Decoder
Oct 19, 2021
CVSS 7.5
EPSS 0.06
CVE-2021-37136
HIGH
Netty < 4.1.68 - Denial of Service via Bzip2 Decompression OOME
Oct 19, 2021
CVSS 7.5
EPSS 0.06
CVE-2021-42575
CRITICAL
OWASP Java HTML Sanitizer <20211018.1 - XSS
Oct 18, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-42340
HIGH
Apache Tomcat 8.5.60-8.5.71, 9.0.40-9.0.53, 10.0.0-M1-10.0.11, 10.1.0-M1-10.1.0-M5 Memory Leak via WebSocket
Oct 14, 2021
CVSS 7.5
EPSS 0.11
CVE-2021-42013
CRITICAL
KEVNUCLEI
Apache HTTP Server 2.4.49-2.4.50 - Path Traversal and Remote Code Execution via Alias-like Directives
Oct 07, 2021
CVSS 9.8
EPSS 1.00
CVE-2021-20264
HIGH
OpenJDK - Privilege Escalation via /etc/passwd Modification
Oct 06, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-41773
CRITICAL
KEVNUCLEI
Apache 2.4.49/2.4.50 Traversal RCE
Oct 05, 2021
CVSS 9.8
EPSS 1.00
CVE-2021-41524
HIGH
Apache HTTP Server 2.4.49 - Denial of Service via HTTP/2 Request Processing
Oct 05, 2021
CVSS 7.5
EPSS 0.25
CVE-2021-41099
HIGH
Redis <6.2.6/<6.0.16/<5.0.14 - Heap Corruption via proto-max-bulk-len
Oct 04, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-32762
HIGH
Redis 5.0.0-5.0.13 - Integer Overflow in Multi-Bulk Reply Parsing
Oct 04, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-32687
HIGH
Redis <6.2.6/<6.0.16/<5.0.14 - Heap Corruption via set-max-intset-entries
Oct 04, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-32675
HIGH
Redis 5.0.0-5.0.13 - Unauthenticated Denial of Service via RESP Request Memory Allocation
Oct 04, 2021
CVSS 7.5
EPSS 0.16
CVE-2021-32672
MEDIUM
Redis <6.2.6-5.0.14 - Use After Free
Oct 04, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-32628
HIGH
Redis 5.0.0-5.0.13 - Remote Code Execution via Ziplist Integer Overflow
Oct 04, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-32627
HIGH
Redis 5.0.0-5.0.13 - Remote Code Execution via Integer Overflow in Stream Elements
Oct 04, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-32626
HIGH
Redis 2.6-5.0.13 - Heap-based Buffer Overflow via Lua Script Execution
Oct 04, 2021
CVSS 7.5
EPSS 0.15
Products
mysql 1,329
jre 799
jdk 787
solaris 555
database_server 516
vm_virtualbox 427
peoplesoft_enterprise_peopletools 355
e-business_suite 337
weblogic_server 322
fusion_middleware 313
mysql_server 278
linux 229
application_server 198
outside_in_technology 195
graalvm 188
jd_edwards_enterpriseone_tools 164
peoplesoft_products 158
enterprise_manager_base_platform 135
communications_cloud_native_core_policy 125
retail_xstore_point_of_service 125
zfs_storage_appliance_kit 117
enterprise_manager_ops_center 107
jrockit 107
http_server 105
webcenter_portal 100
openjdk 98
supply_chain_products_suite 97
flexcube_universal_banking 95
primavera_unifier 95
financial_services_analytical_applications_infrastructure 90
Quick Filters