High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-18	CVE-2022-21613	Unspecified vulnerability in Oracle Enterprise Data Quality 12.2.1.3.0/12.2.1.4.0 Vulnerability in the Oracle Enterprise Data Quality product of Oracle Fusion Middleware (component: Dashboard). network low complexity oracle	8.8
2022-10-18	CVE-2022-21614	Unspecified vulnerability in Oracle Enterprise Data Quality 12.2.1.3.0/12.2.1.4.0 Vulnerability in the Oracle Enterprise Data Quality product of Oracle Fusion Middleware (component: Dashboard). network low complexity oracle	7.5
2022-10-18	CVE-2022-21615	Unspecified vulnerability in Oracle Enterprise Data Quality 12.2.1.3.0/12.2.1.4.0 Vulnerability in the Oracle Enterprise Data Quality product of Oracle Fusion Middleware (component: Dashboard). network low complexity oracle	7.4
2021-07-21	CVE-2021-2351	Session Fixation vulnerability in Oracle products Vulnerability in the Advanced Networking Option component of Oracle Database Server. network high complexity oracle CWE-384	8.3
2021-05-27	CVE-2021-22118	Exposure of Resource to Wrong Sphere vulnerability in multiple products In Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux application is vulnerable to a privilege escalation: by (re)creating the temporary storage directory, a locally authenticated malicious user can read or modify files that have been uploaded to the WebFlux application, or overwrite arbitrary files with multipart request data. local low complexity vmware oracle netapp CWE-668	7.8
2019-05-28	CVE-2019-0188	XXE vulnerability in multiple products Apache Camel prior to 2.24.0 contains an XML external entity injection (XXE) vulnerability (CWE-611) due to using an outdated vulnerable JSON-lib library. network low complexity oracle apache CWE-611	7.5