Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2022-01-19 CVE-2021-42810 A flaw in the previous versions of the product may allow an authenticated attacker the ability to execute code as a privileged user on a system where the agent is installed.
local
low complexity
CWE-335
7.2
2022-01-19 CVE-2021-46204 SQL Injection vulnerability in Taogogo Taocms 3.0.2
Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter.
network
low complexity
taogogo CWE-89
7.5
2022-01-19 CVE-2021-35587 Unspecified vulnerability in Oracle Access Manager 11.1.2.3.0/12.2.1.3.0/12.2.1.4.0
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: OpenSSO Agent).
network
low complexity
oracle
7.5
2022-01-19 CVE-2022-21251 Unspecified vulnerability in Oracle Installed Base
Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: Instance Main).
network
low complexity
oracle
7.8
2022-01-19 CVE-2022-21275 Unspecified vulnerability in Oracle Communications Billing and Revenue Management 12.0.0.3.0/12.0.0.4.0
Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager).
network
low complexity
oracle
7.5
2022-01-19 CVE-2022-21306 Unspecified vulnerability in Oracle Weblogic Server
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core).
network
low complexity
oracle
7.5
2022-01-19 CVE-2022-21389 Unspecified vulnerability in Oracle Communications Billing and Revenue Management 12.0.0.3.0/12.0.0.4.0
Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager).
network
low complexity
oracle
7.5
2022-01-19 CVE-2022-21390 Unspecified vulnerability in Oracle Communications Billing and Revenue Management 12.0.0.3.0/12.0.0.4.0
Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Webservices Manager).
network
low complexity
oracle
7.5
2022-01-19 CVE-2022-0166 Improper Privilege Management vulnerability in Mcafee Agent
A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5.
local
low complexity
mcafee CWE-269
7.2
2022-01-18 CVE-2021-46013 Unrestricted Upload of File with Dangerous Type vulnerability in Free School Management Software Project Free School Management Software 1.0
An unrestricted file upload vulnerability exists in Sourcecodester Free school management software 1.0.
7.5