Vulnerabilities > Oracle > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-11-03 CVE-2022-2696 Missing Authorization vulnerability in Oracle Restaurant Menu - Food Ordering System - Table Reservation
The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to authorization bypass via several AJAX actions in versions up to, and including 2.3.0 due to missing capability checks and missing nonce validation.
network
low complexity
oracle CWE-862
6.5
2022-10-18 CVE-2022-21589 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges).
network
low complexity
oracle netapp
4.3
2022-10-18 CVE-2022-21591 Unspecified vulnerability in Oracle Transportation Management 6.4.3/6.5.1
Vulnerability in the Oracle Transportation Management product of Oracle Supply Chain (component: UI Infrastructure).
network
low complexity
oracle
5.4
2022-10-18 CVE-2022-21592 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption).
network
low complexity
oracle netapp
4.3
2022-10-18 CVE-2022-21594 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle netapp
4.9
2022-10-18 CVE-2022-21595 Vulnerability in the MySQL Server product of Oracle MySQL (component: C API).
network
high complexity
oracle netapp mariadb
4.4
2022-10-18 CVE-2022-21597 Unspecified vulnerability in Oracle Graalvm 20.3.7/21.3.3/22.2.0
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaScript).
network
low complexity
oracle
5.3
2022-10-18 CVE-2022-21599 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure).
network
low complexity
oracle netapp
4.9
2022-10-18 CVE-2022-21601 Unspecified vulnerability in Oracle Communications Billing and Revenue Management 12.0.0.4.0/12.0.0.5/12.0.0.6.0
Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager).
network
low complexity
oracle
6.5
2022-10-18 CVE-2022-21602 Unspecified vulnerability in Oracle Peoplesoft Enterprise 8.58/8.59/8.60
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal).
network
low complexity
oracle
5.3