oracle
10,484 tracked vulnerabilities.
CVE-2021-32014
MEDIUM
SheetJS and SheetJS Pro < 0.16.9 - Denial of Service via Crafted .xlsx Document
Jul 19, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-32013
MEDIUM
SheetJS and SheetJS Pro < 0.16.9 - Denial of Service via Crafted XLSX Document
Jul 19, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-32012
MEDIUM
SheetJS and SheetJS Pro < 0.16.9 - Denial of Service via Crafted XLSX Document
Jul 19, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-34429
MEDIUM
NUCLEI
Eclipse Jetty 9.4.37-9.4.42, 10.0.1-10.0.5, 11.0.1-11.0.5 - Directory Traversal & Security Bypass via Encoded URI
Jul 15, 2021
CVSS 5.3
EPSS 0.99
CVE-2021-34558
MEDIUM
GO < 1.15.14 - Improper Certificate Validation
Jul 15, 2021
CVSS 6.5
EPSS 0.07
CVE-2021-36374
MEDIUM
Apache Ant <1.9.16, 1.10.11 - Memory Corruption
Jul 14, 2021
CVSS 5.5
EPSS 0.03
CVE-2021-36373
MEDIUM
Apache Ant <1.9.16, 1.10.11 - Memory Corruption
Jul 14, 2021
CVSS 5.5
EPSS 0.03
CVE-2021-31810
MEDIUM
Ruby < 2.6.7, 2.7.x < 2.7.3, 3.x < 3.0.1 - Information Disclosure via FTP PASV Response
Jul 13, 2021
CVSS 5.8
EPSS 0.03
CVE-2021-36090
HIGH
Apache Commons Compress 1.0-1.20 - Denial of Service via Malicious ZIP Archive
Jul 13, 2021
CVSS 7.5
EPSS 0.13
CVE-2021-35517
HIGH
Apache Commons Compress 1.1-1.19 - Denial of Service via Malicious TAR Archive
Jul 13, 2021
CVSS 7.5
EPSS 0.11
CVE-2021-35516
HIGH
Apache Commons Compress 1.6-1.19 - Denial of Service via Malicious 7Z Archive
Jul 13, 2021
CVSS 7.5
EPSS 0.12
CVE-2021-35515
HIGH
Apache Commons Compress 1.6-1.19 - Denial of Service via Crafted 7Z Archive
Jul 13, 2021
CVSS 7.5
EPSS 0.12
CVE-2021-33037
MEDIUM
Apache Tomcat <10.0.7-8.5.67 - Info Disclosure
Jul 12, 2021
CVSS 5.3
EPSS 0.75
CVE-2021-30640
MEDIUM
Apache Tomcat <10.0.6, <9.0.46, <8.5.66 - Auth Bypass
Jul 12, 2021
CVSS 6.5
EPSS 0.10
CVE-2021-30639
HIGH
Apache Tomcat 10.0.3-10.0.4, 9.0.44, 8.5.64 - Denial of Service via Non-Blocking I/O Error Flag
Jul 12, 2021
CVSS 7.5
EPSS 0.07
CVE-2021-30129
MEDIUM
Apache Mina SSHD <2.7.0 - Buffer Overflow
Jul 12, 2021
CVSS 6.5
EPSS 0.03
CVE-2021-3541
MEDIUM
libxml2 < 2.9.11 - Denial of Service via Exponential Entity Expansion
Jul 09, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-3612
HIGH
Linux Kernel < 5.9.0 - Out-of-Bounds Write via JSIOCSBTNMAP ioctl
Jul 09, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-22119
HIGH
Spring Security 5.2.0-5.2.10, 5.3.0-5.3.9, 5.4.0-5.4.6, 5.5.0 - Denial of Service via OAuth 2.0 Authorization Request
Jun 29, 2021
CVSS 7.5
EPSS 0.06
CVE-2021-33503
HIGH
urllib3 >=1.25.4 <1.26.5 - Denial of Service via Authority Component Regex Backtracking
Jun 29, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-32723
HIGH
Prism < 1.24.0 - Regular Expression Denial of Service in ASCIIDoc and ERB Highlighters
Jun 28, 2021
CVSS 7.4
EPSS 0.01
CVE-2021-3314
MEDIUM
Oracle GlassFish Server < 3.1.2.18 - Reflected Cross-Site Scripting via logViewer.jsf
Jun 25, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-2322
HIGH
OpenGrok <= 1.6.7 - Authenticated Remote Code Execution via Web App
Jun 23, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-34428
LOW
Eclipse Jetty <= 9.4.40 - Insufficient Session Expiration via SessionListener Exception
Jun 22, 2021
CVSS 2.9
EPSS 0.01
CVE-2021-33813
HIGH
JDOM < 2.0.6 - XML External Entity Injection via SAXBuilder
Jun 16, 2021
CVSS 7.5
EPSS 0.19
Products
mysql 1,329
jre 799
jdk 787
solaris 555
database_server 516
vm_virtualbox 427
peoplesoft_enterprise_peopletools 355
e-business_suite 337
weblogic_server 322
fusion_middleware 313
mysql_server 278
linux 229
application_server 198
outside_in_technology 195
graalvm 188
jd_edwards_enterpriseone_tools 164
peoplesoft_products 158
enterprise_manager_base_platform 135
communications_cloud_native_core_policy 125
retail_xstore_point_of_service 125
zfs_storage_appliance_kit 117
enterprise_manager_ops_center 107
jrockit 107
http_server 105
webcenter_portal 100
openjdk 98
supply_chain_products_suite 97
flexcube_universal_banking 95
primavera_unifier 95
financial_services_analytical_applications_infrastructure 90
Quick Filters