oracle
10,484 tracked vulnerabilities.
CVE-2021-30468
HIGH
Apache CXF < 3.3.11 and 3.4.0-3.4.4 - Denial of Service via Malformed JSON
Jun 16, 2021
CVSS 7.5
EPSS 0.07
CVE-2021-31618
HIGH
Apache HTTP Server mod_http2 1.15.17 - Denial of Service via NULL Pointer Dereference in HTTP/2 Header Handling
Jun 15, 2021
CVSS 7.5
EPSS 0.51
CVE-2021-31812
MEDIUM
Apache PDFBox 2.0.0-2.0.23 - Denial of Service via Infinite Loop
Jun 12, 2021
CVSS 5.5
EPSS 0.03
CVE-2021-31811
MEDIUM
Apache PDFBox 2.0.0-2.0.23 - Denial of Service via Crafted PDF File
Jun 12, 2021
CVSS 5.5
EPSS 0.03
CVE-2021-32553
HIGH
Ubuntu Linux - Information Disclosure via Symbolic Link Following in apport/hookutils.py read_file()
Jun 12, 2021
CVSS 7.3
EPSS 0.00
CVE-2021-22901
HIGH
curl 7.75.0-7.76.1 - Use-After-Free via TLS 1.3 Session Ticket Handling
Jun 11, 2021
CVSS 8.1
EPSS 0.60
CVE-2021-22898
LOW
curl 7.7-7.76.1 - Information Disclosure via TELNET NEW_ENV Option Parser
Jun 11, 2021
CVSS 3.1
EPSS 0.04
CVE-2021-22897
MEDIUM
curl 7.61.0-7.76.1 - Data Element Exposure via CURLOPT_SSL_CIPHER_LIST
Jun 11, 2021
CVSS 5.3
EPSS 0.03
CVE-2021-30641
MEDIUM
Apache HTTP Server <2.4.47 - Path Traversal
Jun 10, 2021
CVSS 5.3
EPSS 0.52
CVE-2021-26691
CRITICAL
Apache HTTP Server 2.4.0-2.4.46 - Heap-based Buffer Overflow via SessionHeader
Jun 10, 2021
CVSS 9.8
EPSS 0.68
CVE-2021-26690
HIGH
Apache HTTP Server 2.4.0-2.4.46 - Denial of Service via Crafted Cookie Header in mod_session
Jun 10, 2021
CVSS 7.5
EPSS 0.65
CVE-2021-28169
MEDIUM
NUCLEI
Eclipse Jetty ConcatServlet - Information Disclosure
Jun 09, 2021
CVSS 5.3
EPSS 0.78
CVE-2021-33560
HIGH
Libgcrypt <1.8.8 & <1.9.3 - Info Disclosure
Jun 08, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-22222
HIGH
Wireshark 3.4.0-3.4.5 - Denial of Service via DVB-S2-BB Dissector Infinite Loop
Jun 07, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-33880
MEDIUM
websockets < 9.1 - Timing Attack via HTTP Basic Authentication
Jun 06, 2021
CVSS 5.9
EPSS 0.02
CVE-2021-3522
MEDIUM
GStreamer <1.18.4 - Info Disclosure
Jun 02, 2021
CVSS 5.5
EPSS 0.05
CVE-2021-3520
CRITICAL
Lz4 - Buffer Overflow
Jun 02, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-31684
HIGH
json-smart-v1 1.3-1.3.2 and 2.4-2.4.3 - Denial of Service via JSONParserByteArray indexOf Function
Jun 01, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-3516
HIGH
xmllint < 2.9.11 - Use-After-Free
Jun 01, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-23017
HIGH
nginx 0.6.18-1.20.0 - Denial of Service via DNS Resolver Off-by-one Error
Jun 01, 2021
CVSS 7.7
EPSS 0.53
CVE-2021-29505
HIGH
NUCLEI
XStream < 1.4.17 - Remote Code Execution via Untrusted Data Deserialization
May 28, 2021
CVSS 7.5
EPSS 0.78
CVE-2021-22118
HIGH
Spring Framework 5.2.0-5.2.14 - Authenticated Privilege Escalation via WebFlux Temporary Storage Directory
May 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28170
MEDIUM
Jakarta Expression Language <3.0.3 - Info Disclosure
May 26, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-20191
MEDIUM
Oracle Virtualization < 2.8.19 - Log Information Exposure
May 26, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-3426
MEDIUM
Python < 3.8.9, < 3.9.3, < 3.10.0a7 - Information Disclosure via pydoc Server
May 20, 2021
CVSS 5.7
EPSS 0.02
Products
mysql 1,329
jre 799
jdk 787
solaris 555
database_server 516
vm_virtualbox 427
peoplesoft_enterprise_peopletools 355
e-business_suite 337
weblogic_server 322
fusion_middleware 313
mysql_server 278
linux 229
application_server 198
outside_in_technology 195
graalvm 188
jd_edwards_enterpriseone_tools 164
peoplesoft_products 158
enterprise_manager_base_platform 135
communications_cloud_native_core_policy 125
retail_xstore_point_of_service 125
zfs_storage_appliance_kit 117
enterprise_manager_ops_center 107
jrockit 107
http_server 105
webcenter_portal 100
openjdk 98
supply_chain_products_suite 97
flexcube_universal_banking 95
primavera_unifier 95
financial_services_analytical_applications_infrastructure 90
Quick Filters