High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-12	CVE-2022-29885	Resource Exhaustion vulnerability in multiple products The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. network low complexity apache debian oracle CWE-400	7.5
2022-05-01	CVE-2022-25647	Deserialization of Untrusted Data vulnerability in multiple products The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks. network low complexity google debian netapp oracle CWE-502	7.5
2022-04-27	CVE-2022-24735	Code Injection vulnerability in multiple products Redis is an in-memory database that persists on disk. local low complexity redis fedoraproject netapp oracle CWE-94	7.8
2022-04-19	CVE-2022-21404	Unspecified vulnerability in Oracle Helidon 1.4.10/2.0.0 Vulnerability in the Helidon product of Oracle Fusion Middleware (component: Reactive WebServer). network high complexity oracle	8.1
2022-04-19	CVE-2022-21410	Unspecified vulnerability in Oracle Database 19C Vulnerability in the Oracle Database - Enterprise Edition Sharding component of Oracle Database Server. network low complexity oracle	7.2
2022-04-19	CVE-2022-21421	Unspecified vulnerability in Oracle Business Intelligence Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web General). network low complexity oracle	7.5
2022-04-19	CVE-2022-21422	Unspecified vulnerability in Oracle Communications Billing and Revenue Management 12.0.0.4/12.0.0.5 Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager). network high complexity oracle	7.5
2022-04-19	CVE-2022-21424	Unspecified vulnerability in Oracle Communications Billing and Revenue Management 12.0.0.4 Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager). network low complexity oracle	8.3
2022-04-19	CVE-2022-21430	Unspecified vulnerability in Oracle Communications Billing and Revenue Management 12.0.0.4/12.0.0.5 Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager). network high complexity oracle	8.5
2022-04-19	CVE-2022-21441	Unspecified vulnerability in Oracle Weblogic Server 12.2.1.3.0/12.2.1.4.0/14.1.1.0.0 Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). network low complexity oracle	7.5