Database Server

DATE	CVE	VULNERABILITY TITLE	RISK
2018-02-06	CVE-2017-15095	Deserialization of Untrusted Data vulnerability in multiple products A deserialization flaw was discovered in the jackson-databind in versions before 2.8.10 and 2.9.1, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. network low complexity fasterxml debian redhat netapp oracle CWE-502 critical	9.8
2018-01-18	CVE-2018-2680	Unspecified vulnerability in Oracle Database Server 11.2.0.4/12.1.0.2/12.2.0.1 Vulnerability in the Java VM component of Oracle Database Server. network high complexity oracle	8.3
2018-01-18	CVE-2018-2575	Unspecified vulnerability in Oracle Database Server 11.2.0.4/12.2.0.1 Vulnerability in the Core RDBMS component of Oracle Database Server. network high complexity oracle	2.0
2018-01-18	CVE-2017-10282	Unspecified vulnerability in Oracle Database Server 12.1.0.2/12.2.0.1 Vulnerability in the Core RDBMS component of Oracle Database Server. network low complexity oracle critical	9.1
2017-08-08	CVE-2017-10120	Unspecified vulnerability in Oracle Database Server 12.1.0.2 Vulnerability in the RDBMS Security component of Oracle Database Server. local high complexity oracle	1.9
2017-05-23	CVE-2016-9843	The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation. network low complexity zlib opensuse debian canonical oracle redhat apple netapp mariadb nodejs critical	9.8
2017-05-23	CVE-2016-9842	The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers. network low complexity zlib opensuse debian canonical oracle redhat apple nodejs	8.8
2017-05-23	CVE-2016-9841	inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic. network low complexity zlib opensuse debian canonical oracle redhat apple netapp nodejs critical	9.8
2017-05-23	CVE-2016-9840	inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic. network low complexity zlib opensuse debian canonical oracle redhat apple nodejs	8.8
2017-01-27	CVE-2017-3240	Information Exposure vulnerability in Oracle Database Server 12.1.0.2 Vulnerability in the RDBMS Security component of Oracle Database Server. local low complexity oracle CWE-200	3.3