Vulnerabilities > Oracle > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-10-19 | CVE-2017-10077 | Unspecified vulnerability in Oracle Applications DBA Vulnerability in the Oracle Applications DBA component of Oracle E-Business Suite (subcomponent: AD Utilities). | 6.5 |
| 2017-10-19 | CVE-2017-10066 | Unspecified vulnerability in Oracle E-Business Suite Technology Stack Vulnerability in the Oracle Applications Technology Stack component of Oracle E-Business Suite (subcomponent: Oracle Forms). | 5.3 |
| 2017-10-19 | CVE-2017-10055 | Unspecified vulnerability in Oracle Iplanet web Server 7.0 Vulnerability in the Oracle iPlanet Web Server component of Oracle Fusion Middleware (subcomponent: Admin Graphical User Interface). | 6.1 |
| 2017-10-19 | CVE-2017-10054 | Unspecified vulnerability in Oracle Hospitality Cruise Materials Management 7.30.564.0 Vulnerability in the Oracle Hospitality Cruise Materials Management component of Oracle Hospitality Applications (subcomponent: MMS). | 5.1 |
| 2017-10-19 | CVE-2017-10051 | Unspecified vulnerability in Oracle Outside in Technology 8.5.3.0 Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). low complexity oracle | 5.7 |
| 2017-10-19 | CVE-2017-10033 | Unspecified vulnerability in Oracle Webcenter Sites 11.1.1.8.0/12.2.1.2.0 Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Support Tools). | 4.0 |
| 2017-09-05 | CVE-2017-14159 | Improper Initialization vulnerability in multiple products slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill `cat /pathname`" command, as demonstrated by openldap-initscript. | 4.7 |
| 2017-08-10 | CVE-2016-6794 | When a SecurityManager is configured, a web application's ability to read system properties should be controlled by the SecurityManager. | 5.3 |
| 2017-08-10 | CVE-2016-0762 | Information Exposure Through Discrepancy vulnerability in multiple products The Realm implementations in Apache Tomcat versions 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 did not process the supplied password if the supplied user name did not exist. | 5.9 |
| 2017-08-08 | CVE-2017-3652 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). | 4.2 |