oracle

10,484 tracked vulnerabilities.

CVE-2021-39152 HIGH NUCLEI
XStream < 1.4.18 - Remote Code Execution via Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.11
CVE-2021-39150 HIGH
Oracle Utilities Framework < 1.4.18 - SSRF
Aug 23, 2021
CVSS 8.5
EPSS 0.03
CVE-2021-39140 MEDIUM
XStream < 1.4.18 - Denial of Service via CPU Exhaustion
Aug 23, 2021
CVSS 6.5
EPSS 0.06
CVE-2021-39154 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.05
CVE-2021-39153 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.04
CVE-2021-39151 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.05
CVE-2021-39149 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.05
CVE-2021-39148 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.05
CVE-2021-39147 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.05
CVE-2021-39146 HIGH NUCLEI
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.14
CVE-2021-39145 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.04
CVE-2021-39144 HIGH KEVNUCLEI
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.98
CVE-2021-39141 HIGH NUCLEI
XStream < 1.4.18 - Remote Code Execution via Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.16
CVE-2021-39139 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
Aug 23, 2021
CVSS 8.5
EPSS 0.05
CVE-2021-35940 HIGH
Apache Portable Runtime <1.7.0 - Info Disclosure
Aug 23, 2021
CVSS 7.1
EPSS 0.01
CVE-2021-37750 MEDIUM
MIT Kerberos 5 < 1.18.5 and 1.19.x < 1.19.3 - NULL Pointer Dereference in KDC FAST Inner Body
Aug 23, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-37714 HIGH
jsoup < 1.14.2 - Denial of Service via Malicious HTML/XML Input
Aug 18, 2021
CVSS 7.5
EPSS 0.07
CVE-2021-21781 LOW
Linux Kernel 5.4.54-5.4.66 - Information Disclosure via ARM SIGPAGE
Aug 18, 2021
CVSS 3.3
EPSS 0.00
CVE-2021-32827 MEDIUM
MockServer - Code Execution via Overbroad CORS and Script Injection
Aug 16, 2021
CVSS 6.1
EPSS 0.02
CVE-2021-22940 HIGH
Node.js <16.6.1, 14.17.5, 12.22.5 - Use After Free
Aug 16, 2021
CVSS 7.5
EPSS 0.14
CVE-2021-22939 MEDIUM
Node.js 12.0.0-12.22.4 and 16.0.0-16.6.1 - Improper Certificate Validation
Aug 16, 2021
CVSS 5.3
EPSS 0.15
CVE-2021-22931 CRITICAL
Node.js <16.6.0, 14.17.4, 12.22.4 - RCE
Aug 16, 2021
CVSS 9.8
EPSS 0.22
CVE-2021-33193 HIGH
Apache HTTP Server <2.4.49 - SSRF
Aug 16, 2021
CVSS 7.5
EPSS 0.46
CVE-2021-37695 HIGH
CKEditor < 4.16.2 - Stored Cross-Site Scripting via Fake Objects HTML Injection
Aug 13, 2021
CVSS 7.3
EPSS 0.01
CVE-2021-32809 MEDIUM
CKEditor 4.5.2-4.16.1 - HTML Injection via Malformed Paste Content
Aug 12, 2021
CVSS 4.6
EPSS 0.01