oracle

10,484 tracked vulnerabilities.

CVE-2021-32014 MEDIUM
SheetJS and SheetJS Pro < 0.16.9 - Denial of Service via Crafted .xlsx Document
Jul 19, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-32013 MEDIUM
SheetJS and SheetJS Pro < 0.16.9 - Denial of Service via Crafted XLSX Document
Jul 19, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-32012 MEDIUM
SheetJS and SheetJS Pro < 0.16.9 - Denial of Service via Crafted XLSX Document
Jul 19, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-34429 MEDIUM NUCLEI
Eclipse Jetty 9.4.37-9.4.42, 10.0.1-10.0.5, 11.0.1-11.0.5 - Directory Traversal & Security Bypass via Encoded URI
Jul 15, 2021
CVSS 5.3
EPSS 0.99
CVE-2021-34558 MEDIUM
GO < 1.15.14 - Improper Certificate Validation
Jul 15, 2021
CVSS 6.5
EPSS 0.07
CVE-2021-36374 MEDIUM
Apache Ant <1.9.16, 1.10.11 - Memory Corruption
Jul 14, 2021
CVSS 5.5
EPSS 0.03
CVE-2021-36373 MEDIUM
Apache Ant <1.9.16, 1.10.11 - Memory Corruption
Jul 14, 2021
CVSS 5.5
EPSS 0.03
CVE-2021-31810 MEDIUM
Ruby < 2.6.7, 2.7.x < 2.7.3, 3.x < 3.0.1 - Information Disclosure via FTP PASV Response
Jul 13, 2021
CVSS 5.8
EPSS 0.03
CVE-2021-36090 HIGH
Apache Commons Compress 1.0-1.20 - Denial of Service via Malicious ZIP Archive
Jul 13, 2021
CVSS 7.5
EPSS 0.13
CVE-2021-35517 HIGH
Apache Commons Compress 1.1-1.19 - Denial of Service via Malicious TAR Archive
Jul 13, 2021
CVSS 7.5
EPSS 0.11
CVE-2021-35516 HIGH
Apache Commons Compress 1.6-1.19 - Denial of Service via Malicious 7Z Archive
Jul 13, 2021
CVSS 7.5
EPSS 0.12
CVE-2021-35515 HIGH
Apache Commons Compress 1.6-1.19 - Denial of Service via Crafted 7Z Archive
Jul 13, 2021
CVSS 7.5
EPSS 0.12
CVE-2021-33037 MEDIUM
Apache Tomcat <10.0.7-8.5.67 - Info Disclosure
Jul 12, 2021
CVSS 5.3
EPSS 0.75
CVE-2021-30640 MEDIUM
Apache Tomcat <10.0.6, <9.0.46, <8.5.66 - Auth Bypass
Jul 12, 2021
CVSS 6.5
EPSS 0.10
CVE-2021-30639 HIGH
Apache Tomcat 10.0.3-10.0.4, 9.0.44, 8.5.64 - Denial of Service via Non-Blocking I/O Error Flag
Jul 12, 2021
CVSS 7.5
EPSS 0.07
CVE-2021-30129 MEDIUM
Apache Mina SSHD <2.7.0 - Buffer Overflow
Jul 12, 2021
CVSS 6.5
EPSS 0.03
CVE-2021-3541 MEDIUM
libxml2 < 2.9.11 - Denial of Service via Exponential Entity Expansion
Jul 09, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-3612 HIGH
Linux Kernel < 5.9.0 - Out-of-Bounds Write via JSIOCSBTNMAP ioctl
Jul 09, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-22119 HIGH
Spring Security 5.2.0-5.2.10, 5.3.0-5.3.9, 5.4.0-5.4.6, 5.5.0 - Denial of Service via OAuth 2.0 Authorization Request
Jun 29, 2021
CVSS 7.5
EPSS 0.06
CVE-2021-33503 HIGH
urllib3 >=1.25.4 <1.26.5 - Denial of Service via Authority Component Regex Backtracking
Jun 29, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-32723 HIGH
Prism < 1.24.0 - Regular Expression Denial of Service in ASCIIDoc and ERB Highlighters
Jun 28, 2021
CVSS 7.4
EPSS 0.01
CVE-2021-3314 MEDIUM
Oracle GlassFish Server < 3.1.2.18 - Reflected Cross-Site Scripting via logViewer.jsf
Jun 25, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-2322 HIGH
OpenGrok <= 1.6.7 - Authenticated Remote Code Execution via Web App
Jun 23, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-34428 LOW
Eclipse Jetty <= 9.4.40 - Insufficient Session Expiration via SessionListener Exception
Jun 22, 2021
CVSS 2.9
EPSS 0.01
CVE-2021-33813 HIGH
JDOM < 2.0.6 - XML External Entity Injection via SAXBuilder
Jun 16, 2021
CVSS 7.5
EPSS 0.19