Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle applications 10.7 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2003-0632
Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 up to and including 11.5.8 may allow remote malicious users to execute arbitrary code via a long URL.
Oracle Applications 11.0
Oracle E-business Suite 11.1
Oracle E-business Suite 11.8
Oracle Applications 10.7
Oracle E-business Suite 11.6
Oracle E-business Suite 11.7
Oracle E-business Suite 11.2
Oracle E-business Suite 11.3
Oracle E-business Suite 11.4
Oracle E-business Suite 11.5
445
VMScore
CVE-2003-0633
Multiple vulnerabilities in aoljtest.jsp of Oracle Applications AOL/J Setup Test Suite in Oracle E-Business Suite 11.5.1 up to and including 11.5.8 allow a remote malicious user to obtain sensitive information without authentication, such as the GUEST user password and the applic...
Oracle Applications 10.7
Oracle E-business Suite 11.6
Oracle E-business Suite 11.7
Oracle E-business Suite 11.4
Oracle E-business Suite 11.5
Oracle Applications 11.0
Oracle E-business Suite 11.1
Oracle E-business Suite 11.8
Oracle E-business Suite 11.2
Oracle E-business Suite 11.3
445
VMScore
CVE-2003-1116
The communications protocol for the Report Review Agent (RRA), aka FND File Server (FNDFS) program, in Oracle E-Business Suite 10.7, 11.0, and 11.5.1 to 11.5.8 allows remote malicious users to bypass authentication and obtain sensitive information from the Oracle Applications Con...
Oracle E-business Suite 10.7
Oracle E-business Suite 11.0
Oracle E-business Suite 11.7
Oracle E-business Suite 11.8
Oracle E-business Suite 11.5
Oracle E-business Suite 11.6
Oracle E-business Suite 11.3
Oracle E-business Suite 11.4
Oracle E-business Suite 11.1
Oracle E-business Suite 11.2
NA
CVE-2022-21595
Vulnerability in the MySQL Server product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.36 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromis...
Oracle Mysql
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Mariadb Mariadb
490
VMScore
CVE-2021-35604
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.35 and prior and 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Insight -
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Mariadb Mariadb
632
VMScore
CVE-2021-2389
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromi...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Mariadb Mariadb
312
VMScore
CVE-2021-2372
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromi...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Mariadb Mariadb
187
VMScore
CVE-2022-31622
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress.cc, when an error occurs (pthread_create returns a nonzero value) while executing the method create_worker_threads, the held lock is not released correctly, which allows local users ...
Mariadb Mariadb
187
VMScore
CVE-2022-31623
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress.cc, when an error occurs (i.e., going to the err label) while executing the method create_worker_threads, the held lock thd->ctrl_mutex is not released correctly, which allows loc...
Mariadb Mariadb
187
VMScore
CVE-2022-31624
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. While executing the plugin/server_audit/server_audit.c method log_statement_ex, the held lock lock_bigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock.
Mariadb Mariadb
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »