oracle

10,484 tracked vulnerabilities.

CVE-2021-2475 MEDIUM
Oracle VM VirtualBox < 6.1.28 - Authenticated Denial of Service in Core
Oct 20, 2021
CVSS 4.4
EPSS 0.00
CVE-2021-2474 HIGH
Oracle E-Business Suite - Unauthorized Access
Oct 20, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-2471 MEDIUM
Oracle MySQL Connector/J <8.0.26 - Privilege Escalation
Oct 20, 2021
CVSS 5.9
EPSS 0.07
CVE-2021-2461 HIGH
Oracle Communications Interactive Session Recorder <6.4 - RCE
Oct 20, 2021
CVSS 8.3
EPSS 0.01
CVE-2021-2416 MEDIUM
Oracle Communications Session Border Controller 8.4-9.0 - DoS
Oct 20, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-2414 MEDIUM
Oracle Communications Session Border Controller <9.0 - RCE
Oct 20, 2021
CVSS 6.8
EPSS 0.01
CVE-2021-2332 MEDIUM
Oracle Database Server 12.1.0.2, 12.2.0.1, 19c - Authenticated Denial of Service and Data Manipulation in LogMiner
Oct 20, 2021
CVSS 6.7
EPSS 0.01
CVE-2021-2137 HIGH
Oracle Enterprise Manager <13.5.0.0 - RCE
Oct 20, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-42739 MEDIUM
Linux kernel < 5.14.13 - Out-of-bounds Write in Firewire Subsystem
Oct 20, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-37137 HIGH
Netty < 4.1.68 - Uncontrolled Resource Consumption via Snappy Frame Decoder
Oct 19, 2021
CVSS 7.5
EPSS 0.06
CVE-2021-37136 HIGH
Netty < 4.1.68 - Denial of Service via Bzip2 Decompression OOME
Oct 19, 2021
CVSS 7.5
EPSS 0.06
CVE-2021-42575 CRITICAL
OWASP Java HTML Sanitizer <20211018.1 - XSS
Oct 18, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-42340 HIGH
Apache Tomcat 8.5.60-8.5.71, 9.0.40-9.0.53, 10.0.0-M1-10.0.11, 10.1.0-M1-10.1.0-M5 Memory Leak via WebSocket
Oct 14, 2021
CVSS 7.5
EPSS 0.11
CVE-2021-42013 CRITICAL KEVNUCLEI
Apache HTTP Server 2.4.49-2.4.50 - Path Traversal and Remote Code Execution via Alias-like Directives
Oct 07, 2021
CVSS 9.8
EPSS 1.00
CVE-2021-20264 HIGH
OpenJDK - Privilege Escalation via /etc/passwd Modification
Oct 06, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-41773 CRITICAL KEVNUCLEI
Apache 2.4.49/2.4.50 Traversal RCE
Oct 05, 2021
CVSS 9.8
EPSS 1.00
CVE-2021-41524 HIGH
Apache HTTP Server 2.4.49 - Denial of Service via HTTP/2 Request Processing
Oct 05, 2021
CVSS 7.5
EPSS 0.25
CVE-2021-41099 HIGH
Redis <6.2.6/<6.0.16/<5.0.14 - Heap Corruption via proto-max-bulk-len
Oct 04, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-32762 HIGH
Redis 5.0.0-5.0.13 - Integer Overflow in Multi-Bulk Reply Parsing
Oct 04, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-32687 HIGH
Redis <6.2.6/<6.0.16/<5.0.14 - Heap Corruption via set-max-intset-entries
Oct 04, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-32675 HIGH
Redis 5.0.0-5.0.13 - Unauthenticated Denial of Service via RESP Request Memory Allocation
Oct 04, 2021
CVSS 7.5
EPSS 0.16
CVE-2021-32672 MEDIUM
Redis <6.2.6-5.0.14 - Use After Free
Oct 04, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-32628 HIGH
Redis 5.0.0-5.0.13 - Remote Code Execution via Ziplist Integer Overflow
Oct 04, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-32627 HIGH
Redis 5.0.0-5.0.13 - Remote Code Execution via Integer Overflow in Stream Elements
Oct 04, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-32626 HIGH
Redis 2.6-5.0.13 - Heap-based Buffer Overflow via Lua Script Execution
Oct 04, 2021
CVSS 7.5
EPSS 0.15