Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-04-24 CVE-2017-3454 Unspecified vulnerability in Oracle Mysql
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB).
network
low complexity
oracle
5.5
5.5
2017-04-24 CVE-2017-3453 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
network
low complexity
oracle debian mariadb redhat
6.5
6.5
2017-04-24 CVE-2017-3452 Unspecified vulnerability in Oracle Mysql
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
network
low complexity
oracle
6.5
6.5
2017-04-24 CVE-2017-3451 Unspecified vulnerability in Oracle Retail Open Commerce Platform Cloud Service
Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications (subcomponent: Web).
network
low complexity
oracle
5.4
5.4
2017-04-24 CVE-2017-3331 Unspecified vulnerability in Oracle Mysql
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML).
network
low complexity
oracle
6.5
6.5
2017-04-24 CVE-2017-3305 Cleartext Transmission of Sensitive Information vulnerability in multiple products
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API).
network
high complexity
oracle debian CWE-319
5.3
5.3
2017-04-24 CVE-2017-3304 Unspecified vulnerability in Oracle Mysql Cluster
Vulnerability in the MySQL Cluster component of Oracle MySQL (subcomponent: Cluster: DD).
network
low complexity
oracle
5.4
5.4
2017-04-24 CVE-2017-3288 Unspecified vulnerability in Oracle Flexcube Investor Servicing
Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Unit Trust).
network
low complexity
oracle
5.4
5.4
2017-04-24 CVE-2017-3232 Unspecified vulnerability in Oracle Automatic Service Request
Vulnerability in the Automatic Service Request (ASR) component of Oracle Support Tools (subcomponent: ASR Manager).
local
low complexity
oracle
5.5
5.5
2017-04-24 CVE-2016-5016 Improper Certificate Validation vulnerability in Pivotal Software products
Pivotal Cloud Foundry 239 and earlier, UAA (aka User Account and Authentication Server) 3.4.1 and earlier, UAA release 12.2 and earlier, PCF (aka Pivotal Cloud Foundry) Elastic Runtime 1.6.x before 1.6.35, and PCF Elastic Runtime 1.7.x before 1.7.13 does not validate if a certificate is expired.
network
high complexity
pivotal-software CWE-295
5.9
5.9