Vulnerabilities > Oracle > Goldengate > High

DATE CVE VULNERABILITY TITLE RISK
2021-12-14 CVE-2021-4104 Deserialization of Untrusted Data vulnerability in multiple products
JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration.
network
high complexity
apache fedoraproject redhat oracle CWE-502
7.5
2021-08-31 CVE-2021-3749 axios is vulnerable to Inefficient Regular Expression Complexity
network
low complexity
axios siemens oracle
7.5
2021-06-01 CVE-2021-23017 A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
network
high complexity
f5 openresty fedoraproject netapp oracle
7.7
2019-12-18 CVE-2018-1311 Use After Free vulnerability in multiple products
The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs.
network
high complexity
apache redhat debian oracle fedoraproject CWE-416
8.1
2018-10-17 CVE-2018-2914 NULL Pointer Dereference vulnerability in Oracle Goldengate 12.1.2.1.0/12.2.0.2.0/12.3.0.1.0
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Manager).
network
low complexity
oracle CWE-476
7.5
2018-10-17 CVE-2018-2912 NULL Pointer Dereference vulnerability in Oracle Goldengate 12.1.2.1.0/12.2.0.2.0/12.3.0.1.0
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Manager).
network
low complexity
oracle CWE-476
7.5
2018-04-19 CVE-2018-2832 Unspecified vulnerability in Oracle Goldengate 12.2.0.1
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate.
network
low complexity
oracle
8.6