VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Oracle
>
Essbase
> Low
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-07-18
CVE-2023-22010
Unspecified vulnerability in Oracle Essbase 21.4.3.0.0
Vulnerability in Oracle Essbase (component: Security and Provisioning).
network
high complexity
oracle
2.2
2.2
2021-06-11
CVE-2021-22898
Missing Initialization of Resource vulnerability in multiple products
curl 7.7 through 7.76.1 suffers from an information disclosure when the `-t` command line option, known as `CURLOPT_TELNETOPTIONS` in libcurl, is used to send variable=content pairs to TELNET servers.
network
high complexity
haxx
debian
fedoraproject
oracle
siemens
splunk
CWE-909
3.1
3.1
2021-04-01
CVE-2021-22890
Authentication Bypass by Spoofing vulnerability in multiple products
curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets.
network
high complexity
haxx
fedoraproject
netapp
broadcom
debian
siemens
oracle
splunk
CWE-290
3.7
3.7
2020-12-14
CVE-2020-8284
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.
network
high complexity
haxx
fedoraproject
debian
netapp
apple
oracle
fujitsu
siemens
splunk
3.7
3.7