Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-04-24 CVE-2017-5033 Improper Preservation of Permissions vulnerability in multiple products
Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android failed to correctly propagate CSP restrictions to local scheme pages, which allowed a remote attacker to bypass content security policy via a crafted HTML page, related to the unsafe-inline keyword.
network
low complexity
google debian redhat CWE-281
4.3
2017-04-24 CVE-2017-3619 Unspecified vulnerability in Oracle Automatic Service Request
Vulnerability in the Automatic Service Request (ASR) component of Oracle Support Tools (subcomponent: ASR Manager).
local
low complexity
oracle
5.5
2017-04-24 CVE-2017-3600 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump).
network
high complexity
oracle redhat debian mariadb
6.6
2017-04-24 CVE-2017-3597 Unspecified vulnerability in Oracle Webcenter Sites
Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI).
network
low complexity
oracle
5.7
2017-04-24 CVE-2017-3594 Unspecified vulnerability in Oracle Webcenter Sites
Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI).
network
high complexity
oracle
5.9
2017-04-24 CVE-2017-3592 Unspecified vulnerability in Oracle Payroll
Vulnerability in the Oracle Payables component of Oracle E-Business Suite (subcomponent: Self Service Manager).
network
low complexity
oracle
6.5
2017-04-24 CVE-2017-3586 Unspecified vulnerability in Oracle Mysql Connectors 2.1.0/2.1.8
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J).
network
low complexity
oracle
6.4
2017-04-24 CVE-2017-3585 Unspecified vulnerability in Oracle SUN ZFS Storage Appliance KIT Ak2013
Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: User Interface subsystem).
network
low complexity
oracle
5.3
2017-04-24 CVE-2017-3579 Unspecified vulnerability in Oracle Primavera P6 Enterprise Project Portfolio Management
Vulnerability in the Primavera P6 Enterprise Project Portfolio Management component of Oracle Primavera Products Suite (subcomponent: Web Access).
network
low complexity
oracle
6.1
2017-04-24 CVE-2017-3577 Unspecified vulnerability in Oracle Peoplesoft Enterprise CS Campus Community 9.2
Vulnerability in the PeopleSoft Enterprise CS Campus Community component of Oracle PeopleSoft Products (subcomponent: Frameworks).
network
low complexity
oracle
6.5