Vulnerabilities > Oracle > High

DATE CVE VULNERABILITY TITLE RISK
2017-04-24 CVE-2017-3329 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Thread Pooling).
network
low complexity
oracle debian
7.5
7.5
2017-04-24 CVE-2017-3309 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
network
low complexity
oracle debian mariadb redhat
7.7
7.7
2017-04-24 CVE-2017-3308 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML).
network
low complexity
oracle debian mariadb redhat
7.7
7.7
2017-04-24 CVE-2017-3306 Unspecified vulnerability in Oracle Mysql Enterprise Monitor
Vulnerability in the MySQL Enterprise Monitor component of Oracle MySQL (subcomponent: Monitoring: Server).
network
low complexity
oracle
8.3
8.3
2017-04-24 CVE-2017-3254 Unspecified vulnerability in Oracle Retail Invoice Matching 12.0/13.0
Vulnerability in the Oracle Retail Invoice Matching component of Oracle Retail Applications (subcomponent: Security).
network
low complexity
oracle
7.6
7.6
2017-04-24 CVE-2017-3237 Unspecified vulnerability in Oracle Automatic Service Request
Vulnerability in the Automatic Service Request (ASR) component of Oracle Support Tools (subcomponent: ASR Manager).
local
low complexity
oracle
7.8
7.8
2017-04-24 CVE-2017-3233 Unspecified vulnerability in Oracle Automatic Service Request
Vulnerability in the Automatic Service Request (ASR) component of Oracle Support Tools (subcomponent: ASR Manager).
network
low complexity
oracle
7.5
7.5
2017-04-24 CVE-2017-3230 Unspecified vulnerability in Oracle Fusion Middleware Mapviewer 11.1.1.9/12.2.1.1/12.2.1.2
Vulnerability in the Oracle Fusion Middleware MapViewer component of Oracle Fusion Middleware (subcomponent: Map Builder).
network
low complexity
oracle
8.6
8.6
2017-04-11 CVE-2016-4483 Deserialization of Untrusted Data vulnerability in multiple products
The xmlBufAttrSerializeTxtContent function in xmlsave.c in libxml2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a non-UTF-8 attribute value, related to serialization.
network
low complexity
xmlsoft debian oracle CWE-502
7.5
7.5
2017-02-12 CVE-2017-3302 Use After Free vulnerability in multiple products
Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.
network
low complexity
oracle mariadb debian redhat CWE-416
7.5
7.5