oracle

10,202 tracked vulnerabilities.

CVE-2021-2140 MEDIUM
Oracle Financial Services Analytical Applications Infrastructure 8....
Apr 22, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-2136 CRITICAL
Oracle WebLogic Server <14.1.1.0.0 - RCE
Apr 22, 2021
CVSS 9.8
EPSS 0.05
CVE-2021-2135 CRITICAL NUCLEI
Oracle WebLogic Server <14.1.1.0.0 - RCE
Apr 22, 2021
CVSS 9.8
EPSS 0.78
CVE-2021-2134 MEDIUM
Oracle Enterprise Manager for Fusion Middleware 12.2.1.4 - Denial of Service via FMW Control Plugin
Apr 22, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-2053 MEDIUM
Oracle Enterprise Manager <13.4.0.0 - Info Disclosure
Apr 22, 2021
CVSS 6.1
EPSS 0.00
CVE-2021-2008 HIGH
Oracle Enterprise Manager <12.2.1.3 - Unauthenticated RCE
Apr 22, 2021
CVSS 7.3
EPSS 0.01
CVE-2021-28168 MEDIUM
Eclipse Jersey 2.28-2.33 & 3.0.0-3.0.1 - Info Disclosure
Apr 22, 2021
CVSS 6.2
EPSS 0.00
CVE-2021-29425 MEDIUM
Apache Commons IO - Path Traversal via FileNameUtils.normalize
Apr 13, 2021
CVSS 4.8
EPSS 0.00
CVE-2021-3448 MEDIUM
dnsmasq < 2.85 - DNS Cache Poisoning via Fixed Port Query Forwarding
Apr 08, 2021
CVSS 4.0
EPSS 0.00
CVE-2021-22696 HIGH
Apache CXF < 3.3.10 and 3.4.0-3.4.3 - Server-Side Request Forgery via OAuth 2 request_uri Parameter
Apr 02, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-22890 LOW
curl/libcurl 7.63.0-7.75.0 - HTTPS Proxy MITM via TLS Session Tickets
Apr 01, 2021
CVSS 3.7
EPSS 0.00
CVE-2021-22876 MEDIUM
libcurl 7.1.1-7.75.0 - Credential Leak via HTTP Referer Header
Apr 01, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-28165 HIGH
Eclipse Jetty 7.2.2-9.4.38, 10.0.0.alpha0-10.0.1, 11.0.0.alpha0-11.0.1 - Denial of Service via Invalid TLS Frame
Apr 01, 2021
CVSS 7.5
EPSS 0.14
CVE-2021-28164 MEDIUM NUCLEI
Eclipse Jetty - Information Disclosure
Apr 01, 2021
CVSS 5.3
EPSS 0.93
CVE-2021-28163 LOW
NetApp Cloud Manager - Exposure of Sensitive Information via Symlink Webapps Directory
Apr 01, 2021
CVSS 2.7
EPSS 0.00
CVE-2021-28657 MEDIUM
Apache Tika <= 1.25 - Denial of Service via MP3 Parser Infinite Loop
Mar 31, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-21409 MEDIUM
Netty < 4.1.61 - HTTP Request Smuggling via Single Http2HeaderFrame
Mar 30, 2021
CVSS 5.9
EPSS 0.03
CVE-2021-20289 MEDIUM
RESTEasy < 4.6.0 - Information Exposure via Error Message
Mar 26, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-21783 CRITICAL
Genivia gSOAP 2.8.107 - Remote Code Execution via WS-Addressing Plugin
Mar 25, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-3450 HIGH
OpenSSL 1.1.1h-1.1.1j - Certificate Chain Validation Bypass via X509_V_FLAG_X509_STRICT
Mar 25, 2021
CVSS 7.4
EPSS 0.01
CVE-2021-3449 MEDIUM
Openssl < 1.1.1k - NULL Pointer Dereference
Mar 25, 2021
CVSS 5.9
EPSS 0.10
CVE-2021-20227 MEDIUM
SQLite 3.33.0-3.34.0 - Use-After-Free in SELECT Query Processing
Mar 23, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-21351 MEDIUM NUCLEI
Oracle Banking Platform < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 5.4
EPSS 0.92
CVE-2021-21350 MEDIUM
Netapp Oncommand Insight < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 5.3
EPSS 0.09
CVE-2021-21349 MEDIUM
Netapp Oncommand Insight < 5.15.14 - SSRF
Mar 23, 2021
CVSS 6.1
EPSS 0.07
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV