Vulnerabilities > Oracle

DATE CVE VULNERABILITY TITLE RISK
2022-06-17 CVE-2022-21503 Unspecified vulnerability in Oracle Cloud Infrastructure
Vulnerability in the Oracle Cloud Infrastructure product of Oracle Cloud Services.
network
low complexity
oracle
4.0
2022-06-14 CVE-2022-21504 Use After Free vulnerability in Oracle Linux 7/8
The code in UEK6 U3 was missing an appropiate file descriptor count to be missing.
local
low complexity
oracle CWE-416
2.1
2022-06-09 CVE-2022-21499 Out-of-bounds Write vulnerability in multiple products
KGDB and KDB allow read and write access to kernel memory, and thus should be restricted during lockdown.
local
low complexity
oracle debian CWE-787
4.6
2022-05-20 CVE-2022-21500 Unspecified vulnerability in Oracle E-Business Suite 12.2
Vulnerability in Oracle E-Business Suite (component: Manage Proxies).
network
low complexity
oracle
5.0
2022-05-01 CVE-2022-25647 Deserialization of Untrusted Data vulnerability in multiple products
The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks.
network
low complexity
google debian netapp oracle CWE-502
5.0
2022-04-27 CVE-2021-41041 Unchecked Return Value vulnerability in multiple products
In Eclipse Openj9 before version 0.32.0, Java 8 & 11 fail to throw the exception captured during bytecode verification when verification is triggered by a MethodHandle invocation, allowing unverified methods to be invoked using MethodHandles.
network
low complexity
eclipse oracle CWE-252
5.0
2022-04-19 CVE-2022-21404 Unspecified vulnerability in Oracle Helidon 1.4.10/2.0.0
Vulnerability in the Helidon product of Oracle Fusion Middleware (component: Reactive WebServer).
network
oracle
6.8
2022-04-19 CVE-2022-21405 Unspecified vulnerability in Oracle OSS Support Tools 18.3
Vulnerability in the OSS Support Tools product of Oracle Support Tools (component: Oracle Explorer).
local
high complexity
oracle
1.2
2022-04-19 CVE-2022-21409 Unspecified vulnerability in Oracle JD Edwards Enterpriseone Tools
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime).
network
oracle
5.8
2022-04-19 CVE-2022-21410 Unspecified vulnerability in Oracle Database 19C
Vulnerability in the Oracle Database - Enterprise Edition Sharding component of Oracle Database Server.
network
low complexity
oracle
6.5