Vulnerabilities > Oracle > High

DATE CVE VULNERABILITY TITLE RISK
2023-01-18 CVE-2023-21893 Unspecified vulnerability in Oracle Database Server 19C/21C
Vulnerability in the Oracle Data Provider for .NET component of Oracle Database Server.
network
high complexity
oracle
7.5
2022-12-26 CVE-2019-9579 An issue was discovered in Illumos in Nexenta NexentaStor 4.0.5 and 5.1.2, and other products.
network
low complexity
illumos oracle
8.1
2022-12-26 CVE-2020-10650 Deserialization of Untrusted Data vulnerability in multiple products
A deserialization flaw was discovered in jackson-databind through 2.9.10.4.
network
high complexity
fasterxml oracle CWE-502
8.1
2022-11-03 CVE-2022-3776 Unspecified vulnerability in Oracle Restaurant Menu - Food Ordering System - Table Reservation
The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.1.
network
low complexity
oracle
8.8
2022-07-19 CVE-2022-21558 Unspecified vulnerability in Oracle Crystal Ball 11.1.2.0.000/11.1.2.4.900
Vulnerability in the Oracle Crystal Ball product of Oracle Construction and Engineering (component: Installation).
local
high complexity
oracle
7.8
2022-07-19 CVE-2022-34169 Incorrect Conversion between Numeric Types vulnerability in multiple products
The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets.
7.5
2022-07-11 CVE-2020-29505 Insufficient Entropy vulnerability in multiple products
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain a Key Management Error Vulnerability.
network
low complexity
dell oracle CWE-331
7.5
2022-07-11 CVE-2020-35164 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
high complexity
dell oracle
8.1
2022-06-02 CVE-2022-27778 Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products
A use of incorrectly resolved name vulnerability fixed in 7.83.1 might remove the wrong file when `--no-clobber` is used together with `--remove-on-error`.
network
low complexity
haxx netapp oracle splunk CWE-706
8.1
2022-06-01 CVE-2020-26184 Improper Certificate Validation vulnerability in multiple products
Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain an Improper Certificate Validation vulnerability.
network
low complexity
dell oracle CWE-295
7.5