Vulnerabilities > Oracle > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-26 | CVE-2019-2725 | Injection vulnerability in Oracle products Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). | 9.8 |
| 2019-04-23 | CVE-2019-2702 | Unspecified vulnerability in Oracle Hospitality Cruise Dining Room Management 8.0.80 Vulnerability in the Oracle Hospitality Cruise Dining Room Management component of Oracle Hospitality Applications (subcomponent: Web Service). | 9.3 |
| 2019-04-23 | CVE-2019-2699 | Unspecified vulnerability in Oracle JDK and JRE Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Windows DLL). | 9.0 |
| 2019-04-23 | CVE-2019-2658 | Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0.0/12.1.3.0.0 Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). | 9.8 |
| 2019-04-23 | CVE-2019-2646 | Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0.0/12.1.3.0.0/12.2.1.3.0 Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: EJB Container). | 9.8 |
| 2019-04-23 | CVE-2019-2645 | Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0.0/12.1.3.0.0/12.2.1.3.0 Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). | 9.8 |
| 2019-04-23 | CVE-2019-2638 | Unspecified vulnerability in Oracle General Ledger Vulnerability in the Oracle General Ledger component of Oracle E-Business Suite (subcomponent: Consolidation Hierarchy Viewer). | 9.9 |
| 2019-04-23 | CVE-2019-2633 | Unspecified vulnerability in Oracle Work in Process Vulnerability in the Oracle Work in Process component of Oracle E-Business Suite (subcomponent: Messages). | 9.9 |
| 2019-04-23 | CVE-2019-2517 | Unspecified vulnerability in Oracle Database Server 12.2.0.1/18C Vulnerability in the Core RDBMS component of Oracle Database Server. | 9.1 |
| 2019-04-17 | CVE-2019-0228 | XXE vulnerability in multiple products Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF. | 9.8 |