oracle
10,484 tracked vulnerabilities.
CVE-2021-32808
HIGH
CKEditor 4.13.0-4.16.1 - Stored Cross-Site Scripting via Clipboard Widget Undo Feature
Aug 12, 2021
CVSS 7.6
EPSS 0.01
CVE-2021-38604
HIGH
GNU C Library < 2.34 - Null Pointer Dereference
Aug 12, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-36221
MEDIUM
Go <1.15.15, <1.16.7 - Panic
Aug 08, 2021
CVSS 5.9
EPSS 0.03
CVE-2021-29923
HIGH
Go <1.17 - IP Address Access Control Bypass via Octal Parsing
Aug 07, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-22926
HIGH
libcurl-using applications < - Info Disclosure
Aug 05, 2021
CVSS 7.5
EPSS 0.10
CVE-2021-22925
MEDIUM
curl 7.7-7.77.0 - Exposure of Sensitive Information via TELNET NEW_ENV Option Parser
Aug 05, 2021
CVSS 5.3
EPSS 0.05
CVE-2021-22924
LOW
libcurl 7.10.4-7.76.1 - Connection Reuse via Case-Insensitive Path Matching
Aug 05, 2021
CVSS 3.7
EPSS 0.06
CVE-2021-22923
MEDIUM
curl - Metalink Feature - Auth Bypass
Aug 05, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-22922
MEDIUM
curl 7.27.0-7.77.0 - Unauthenticated Malicious Content Retention via Metalink Hash Mismatch
Aug 05, 2021
CVSS 6.5
EPSS 0.04
CVE-2021-32804
HIGH
node-tar <6.1.1,5.0.6,4.4.14,3.3.2 - File Creation/Overwrite
Aug 03, 2021
CVSS 8.2
EPSS 0.15
CVE-2021-32803
HIGH
node-tar <6.1.2-3.2.3 - File Creation/Overwrite
Aug 03, 2021
CVSS 8.2
EPSS 0.08
CVE-2021-32066
HIGH
Ruby < 2.6.7, 2.7.x < 2.7.3, 3.x < 3.0.1 - TLS Protection Bypass via StartTLS Stripping
Aug 01, 2021
CVSS 7.4
EPSS 0.03
CVE-2021-31799
HIGH
Debian Linux < 6.3.1 - OS Command Injection
Jul 30, 2021
CVSS 7.0
EPSS 0.01
CVE-2021-22144
MEDIUM
Elasticsearch < 6.8.17 - Denial of Service via Grok Parser Recursion
Jul 26, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-36222
HIGH
MIT Kerberos <1.18.4, <1.19.2 - Use After Free
Jul 22, 2021
CVSS 7.5
EPSS 0.10
CVE-2021-37159
MEDIUM
Linux Kernel < 5.13.4 - Use-After-Free in hso_free_net_device
Jul 21, 2021
CVSS 6.4
EPSS 0.00
CVE-2021-2447
CRITICAL
Oracle Secure Global Desktop 5.6 - Remote Code Execution via Multiple Protocols
Jul 21, 2021
CVSS 9.9
EPSS 0.01
CVE-2021-2446
CRITICAL
Oracle Virtualization Client 5.6 - Info Disclosure
Jul 21, 2021
CVSS 9.6
EPSS 0.02
CVE-2021-2445
MEDIUM
Oracle Hyperion 11.2.5.0 - Privilege Escalation
Jul 21, 2021
CVSS 5.7
EPSS 0.01
CVE-2021-2444
MEDIUM
MySQL Server < 8.0.23 - Authenticated Denial of Service in Server Optimizer
Jul 21, 2021
CVSS 4.9
EPSS 0.02
CVE-2021-2443
HIGH
Oracle VM VirtualBox <6.1.24 - Privilege Escalation
Jul 21, 2021
CVSS 7.3
EPSS 0.00
CVE-2021-2442
MEDIUM
Oracle VM VirtualBox <6.1.24 - Privilege Escalation
Jul 21, 2021
CVSS 6.0
EPSS 0.00
CVE-2021-2441
MEDIUM
MySQL Server < 8.0.25 - Authenticated Denial of Service in Server Optimizer
Jul 21, 2021
CVSS 4.9
EPSS 0.02
CVE-2021-2440
MEDIUM
MySQL Server < 8.0.25 - Authenticated Denial of Service in Server: DML
Jul 21, 2021
CVSS 4.9
EPSS 0.02
CVE-2021-2439
MEDIUM
Oracle Hyperion BI+ <11.2.5.0 - Info Disclosure
Jul 21, 2021
CVSS 4.3
EPSS 0.01
Products
mysql 1,329
jre 799
jdk 787
solaris 555
database_server 516
vm_virtualbox 427
peoplesoft_enterprise_peopletools 355
e-business_suite 337
weblogic_server 322
fusion_middleware 313
mysql_server 278
linux 229
application_server 198
outside_in_technology 195
graalvm 188
jd_edwards_enterpriseone_tools 164
peoplesoft_products 158
enterprise_manager_base_platform 135
communications_cloud_native_core_policy 125
retail_xstore_point_of_service 125
zfs_storage_appliance_kit 117
enterprise_manager_ops_center 107
jrockit 107
http_server 105
webcenter_portal 100
openjdk 98
supply_chain_products_suite 97
flexcube_universal_banking 95
primavera_unifier 95
financial_services_analytical_applications_infrastructure 90
Quick Filters