Vulnerabilities > Oracle > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-08 | CVE-2017-10024 | Unspecified vulnerability in Oracle Business Intelligence Publisher 11.1.1.7.0 Vulnerability in the BI Publisher component of Oracle Fusion Middleware (subcomponent: Layout Tools). | 8.2 |
| 2017-08-08 | CVE-2017-10019 | Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55 Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Integration Broker). | 7.4 |
| 2017-08-08 | CVE-2017-10016 | Unspecified vulnerability in Oracle SUN ZFS Storage Appliance KIT Software 2013 Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: User Interface). | 7.5 |
| 2017-08-08 | CVE-2017-10013 | Unspecified vulnerability in Oracle SUN ZFS Storage Appliance KIT Software 2013 Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: User Interface). | 8.3 |
| 2017-08-08 | CVE-2017-10001 | Unspecified vulnerability in Oracle Hospitality Simphony 1.7.1 Vulnerability in the Oracle Hospitality Simphony First Edition component of Oracle Hospitality Applications (subcomponent: Core). | 7.6 |
| 2017-08-08 | CVE-2017-10000 | Improper Privilege Management vulnerability in Oracle Hospitality Reporting and Analytics 8.5.1/9.0.0 Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications (subcomponent: Reporting). | 7.7 |
| 2017-08-07 | CVE-2015-7701 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption). | 7.5 |
| 2017-08-07 | CVE-2015-7692 | Improper Input Validation vulnerability in multiple products The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). | 7.5 |
| 2017-08-07 | CVE-2015-7691 | Improper Input Validation vulnerability in multiple products The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. | 7.5 |
| 2017-07-24 | CVE-2015-7703 | Improper Input Validation vulnerability in multiple products The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration password to write to arbitrary files via the :config command. | 7.5 |