Vulnerabilities > Oracle > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-01 | CVE-2018-6485 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow in the implementation of the posix_memalign in memalign functions in the GNU C Library (aka glibc or libc6) 2.26 and earlier could cause these functions to return a pointer to a heap area that is too small, potentially leading to heap corruption. | 9.8 |
| 2018-01-29 | CVE-2017-1000353 | Deserialization of Untrusted Data vulnerability in multiple products Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an unauthenticated remote code execution. | 9.8 |
| 2018-01-18 | CVE-2018-2697 | Unspecified vulnerability in Oracle Hospitality Cruise Fleet Management 9.0.4.0 Vulnerability in the Oracle Hospitality Cruise Fleet Management component of Oracle Hospitality Applications (subcomponent: Emergency Response System). | 9.1 |
| 2018-01-18 | CVE-2018-2664 | Unspecified vulnerability in Oracle SUN ZFS Storage Appliance KIT 8.6/8.7.0 Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: User Interface). | 9.0 |
| 2018-01-18 | CVE-2018-2656 | Unspecified vulnerability in Oracle E-Business Suite Vulnerability in the Oracle General Ledger component of Oracle E-Business Suite (subcomponent: Data Manager Server). | 9.1 |
| 2018-01-18 | CVE-2018-2655 | Unspecified vulnerability in Oracle Work in Process Vulnerability in the Oracle Work in Process component of Oracle E-Business Suite (subcomponent: Assemble/Configure to Order). | 9.1 |
| 2018-01-18 | CVE-2018-2623 | Unspecified vulnerability in Oracle SUN ZFS Storage Appliance KIT 8.6/8.7.0 Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: User Interface). | 9.3 |
| 2018-01-18 | CVE-2018-2611 | Unspecified vulnerability in Oracle SUN ZFS Storage Appliance KIT 8.6/8.7.0 Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: Core Services). | 10.0 |
| 2018-01-18 | CVE-2017-10282 | Unspecified vulnerability in Oracle Database Server 12.1.0.2/12.2.0.1 Vulnerability in the Core RDBMS component of Oracle Database Server. | 9.1 |
| 2017-12-11 | CVE-2017-15708 | Injection vulnerability in multiple products In Apache Synapse, by default no authentication is required for Java Remote Method Invocation (RMI). | 9.8 |