Vulnerabilities > Oracle > Goldengate

DATE CVE VULNERABILITY TITLE RISK
2018-10-17 CVE-2018-2914 NULL Pointer Dereference vulnerability in Oracle Goldengate 12.1.2.1.0/12.2.0.2.0/12.3.0.1.0
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Manager).
network
low complexity
oracle CWE-476
7.5
2018-10-17 CVE-2018-2913 Out-of-bounds Write vulnerability in Oracle Goldengate 12.1.2.1.0/12.2.0.2.0/12.3.0.1.0
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Monitoring Manager).
network
low complexity
oracle CWE-787
critical
10.0
2018-10-17 CVE-2018-2912 NULL Pointer Dereference vulnerability in Oracle Goldengate 12.1.2.1.0/12.2.0.2.0/12.3.0.1.0
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Manager).
network
low complexity
oracle CWE-476
7.5
2018-04-19 CVE-2018-2832 Unspecified vulnerability in Oracle Goldengate 12.2.0.1
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate.
network
low complexity
oracle
8.6
2017-04-17 CVE-2017-5645 Deserialization of Untrusted Data vulnerability in multiple products
In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.
network
low complexity
apache netapp redhat oracle CWE-502
critical
9.8