Vulnerabilities > Oracle > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-26 | CVE-2019-10744 | Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. | 9.1 |
| 2019-07-23 | CVE-2019-2856 | Unspecified vulnerability in Oracle Weblogic Server 12.2.1.3.0 Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Application Container - JavaEE). | 9.8 |
| 2019-07-23 | CVE-2019-2828 | Unspecified vulnerability in Oracle Field Service Vulnerability in the Oracle Field Service component of Oracle E-Business Suite (subcomponent: Wireless). | 9.6 |
| 2019-07-23 | CVE-2019-2775 | Unspecified vulnerability in Oracle Payments Vulnerability in the Oracle Payments component of Oracle E-Business Suite (subcomponent: File Transmission). | 9.1 |
| 2019-07-23 | CVE-2019-10173 | Code Injection vulnerability in multiple products It was found that xstream API version 1.4.10 before 1.4.11 introduced a regression for a previous deserialization flaw. | 9.8 |
| 2019-07-19 | CVE-2019-1010238 | Out-of-bounds Write vulnerability in multiple products Gnome Pango 1.42 and later is affected by: Buffer Overflow. | 9.8 |
| 2019-07-09 | CVE-2018-11307 | Deserialization of Untrusted Data vulnerability in multiple products An issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.5. | 9.8 |
| 2019-06-19 | CVE-2019-2729 | Improper Access Control vulnerability in Oracle products Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). | 9.8 |
| 2019-05-09 | CVE-2019-11835 | Out-of-bounds Write vulnerability in multiple products cJSON before 1.7.11 allows out-of-bounds access, related to multiline comments. | 9.8 |
| 2019-05-09 | CVE-2019-11834 | Out-of-bounds Write vulnerability in multiple products cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a string literal. | 9.8 |