Vulnerabilities > Oracle

DATE CVE VULNERABILITY TITLE RISK
2022-07-11 CVE-2020-29508 Improper Input Validation vulnerability in multiple products
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Improper Input Validation Vulnerability.
network
low complexity
dell oracle CWE-20
critical
 9.8
9.8
2022-07-11 CVE-2020-35163 Use of Insufficiently Random Values vulnerability in multiple products
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain a Use of Insufficiently Random Values Vulnerability.
network
low complexity
dell oracle CWE-330
critical
 9.8
9.8
2022-07-11 CVE-2020-35164 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
high complexity
dell oracle
8.1
8.1
2022-07-11 CVE-2020-35166 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
low complexity
dell oracle
critical
 9.8
9.8
2022-07-11 CVE-2020-35167 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
low complexity
dell oracle
critical
 9.8
9.8
2022-07-11 CVE-2020-35168 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
low complexity
dell oracle
critical
 9.8
9.8
2022-07-11 CVE-2020-35169 Improper Input Validation vulnerability in multiple products
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Improper Input Validation Vulnerability.
network
low complexity
dell oracle CWE-20
critical
 9.8
9.8
2022-06-17 CVE-2022-21503 Unspecified vulnerability in Oracle Cloud Infrastructure
Vulnerability in the Oracle Cloud Infrastructure product of Oracle Cloud Services.
network
low complexity
oracle
4.9
4.9
2022-06-14 CVE-2022-21504 Use After Free vulnerability in Oracle Linux 7/8
The code in UEK6 U3 was missing an appropiate file descriptor count to be missing.
local
low complexity
oracle CWE-416
5.5
5.5
2022-06-10 CVE-2022-25845 Deserialization of Untrusted Data vulnerability in multiple products
The package com.alibaba:fastjson before 1.2.83 are vulnerable to Deserialization of Untrusted Data by bypassing the default autoType shutdown restrictions, which is possible under certain conditions.
network
low complexity
alibaba oracle CWE-502
critical
 9.8
9.8