Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
oracle communications cloud native core console 1.9.0 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-22060
In Spring Framework versions 5.3.0 - 5.3.13, 5.2.0 - 5.2.18, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries. This is a follow-up to CVE-2021-22096 that protects against additional types of...
Vmware Spring Framework
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Service Communication Proxy 1.15.0
1 Github repository available
5.9
CVSSv3
CVE-2021-2471
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Mysql Connectors
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Network Slice Selection Function 1.8.0
Quarkus Quarkus
7 Github repositories available
7.5
CVSSv3
CVE-2020-36518
jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects....
Fasterxml Jackson-databind
Oracle Communications Cloud Native Core Console 1.9.0
1 Github repository available
5.5
CVSSv3
CVE-2021-22569
An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser for several minutes by creating large numbers of short-lived objects that cause...
Google Protobuf-kotlin
Google Protobuf-java
Google Google-protobuf
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Network Repository Function 1.15.0
Oracle Communications Cloud Native Core Network Repository Function 1.15.1
Oracle Spatial And Graph Mapviewer 21c
Oracle Spatial And Graph Mapviewer 19c
2 Github repositories available
5.3
CVSSv3
CVE-2021-20289
A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response when RESTEasy cannot convert one of the request URI path or query values to the matching JAX-RS resource method's...
Redhat Resteasy
Netapp Oncommand Insight -
Quarkus Quarkus
Oracle Communications Cloud Native Core Console 1.9.0
4.3
CVSSv3
CVE-2021-22096
In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries....
Vmware Spring Framework
Netapp Snap Creator Framework -
Netapp Snapcenter -
Netapp Active Iq Unified Manager -
Netapp Management Services For Element Software And Netapp Hci -
Netapp Metrocluster Tiebreaker -
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Service Communication Proxy 1.15.0
1 Github repository available
7.4
CVSSv3
CVE-2020-25638
A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access...
Hibernate Hibernate Orm
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Quarkus Quarkus
Oracle Retail Customer Management And Segmentation Foundation 19.0
Oracle Communications Cloud Native Core Console 1.9.0
2 Github repositories available
5.9
CVSSv3
CVE-2020-14340
A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial of service. It affects XNIO versions 3.6.0.Beta1 through 3.8.1.Final....
Redhat Xnio
Redhat Xnio 3.6.0
Redhat Jboss Operations Network 3.0
Redhat Jboss Enterprise Application Platform 6.0.0
Redhat Jboss Fuse 6.0.0
Redhat Jboss Enterprise Application Platform 5.0.0
Redhat Jboss Fuse 7.0.0
Redhat Jboss Data Grid 7.0.0
Redhat Jboss Brms 5
Redhat Jboss Soa Platform 5
Redhat Jboss Brms 6
Redhat Jboss Data Grid 6.0.0
Redhat Jboss Data Virtualization 6.0.0
Oracle Communications Cloud Native Core Network Repository Function 1.14.0
Oracle Communications Cloud Native Core Policy 1.14.0
Oracle Communications Cloud Native Core Unified Data Repository 1.14.0
Oracle Communications Cloud Native Core Service Communication Proxy 1.14.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.15.0
Oracle Communications Cloud Native Core Console 1.9.0
9.8
CVSSv3
CVE-2022-22965
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar,...
Vmware Spring Framework
Cisco Cx Cloud Agent
Oracle Sd-wan Edge 9.0
Oracle Retail Xstore Point Of Service 20.0.1
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.1
Oracle Sd-wan Edge 9.1
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Oracle Product Lifecycle Analytics 3.6.1
Oracle Financial Services Enterprise Case Management 8.1.1.0
Oracle Financial Services Enterprise Case Management 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.2.0
Oracle Financial Services Behavior Detection Platform 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.1.0
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 22.1.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.0
Oracle Communications Cloud Native Core Policy 22.1.0
Oracle Communications Cloud Native Core Network Slice Selection Function 1.8.0
Oracle Communications Cloud Native Core Network Slice Selection Function 22.1.0
Oracle Communications Cloud Native Core Network Repository Function 1.15.0
Oracle Communications Cloud Native Core Network Repository Function 22.1.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.1.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0
Oracle Communications Cloud Native Core Network Exposure Function 22.1.0
Oracle Communications Cloud Native Core Console 22.1.0
Oracle Communications Cloud Native Core Automated Test Suite 22.1.0
Oracle Communications Cloud Native Core Automated Test Suite 1.9.0
Oracle Retail Xstore Point Of Service 21.0.0
Oracle Financial Services Enterprise Case Management 8.1.2.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.2.0
Oracle Communications Policy Management 12.6.0.0.0
Oracle Mysql Enterprise Monitor
Oracle Communications Cloud Native Core Network Slice Selection Function 1.15.0
Siemens Operation Scheduler
Veritas Access Appliance 7.4.3
Veritas Access Appliance 7.4.3.100
Veritas Access Appliance 7.4.3.200
Veritas Netbackup Virtual Appliance 4.0.0.1
Veritas Netbackup Virtual Appliance 4.1.0.1
Veritas Netbackup Appliance 4.0.0.1
Veritas Netbackup Appliance 4.1.0.1
Veritas Netbackup Flex Scale Appliance 2.1
Veritas Netbackup Flex Scale Appliance 3.0
Veritas Netbackup Virtual Appliance 4.0
Veritas Netbackup Virtual Appliance 4.1
Veritas Netbackup Appliance 4.0
Veritas Netbackup Appliance 4.1
Veritas Flex Appliance 1.3
Veritas Flex Appliance 2.0
Veritas Flex Appliance 2.0.1
Veritas Flex Appliance 2.0.2
Veritas Flex Appliance 2.1
89 Github repositories available
2 Articles available
6.5
CVSSv3
CVE-2021-30129
A vulnerability in sshd-core of Apache Mina SSHD allows an attacker to overflow the server causing an OutOfMemory error. This issue affects the SFTP and port forwarding features of Apache Mina SSHD version 2.0.0 and later versions. It was addressed in Apache Mina SSHD 2.7.0...
Apache Sshd
Oracle Retail Customer Management And Segmentation Foundation 18.0
Oracle Flexcube Universal Banking
Oracle Retail Customer Management And Segmentation Foundation 19.0
Oracle Middleware Common Libraries And Tools 12.2.1.4.0
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Banking Payments 14.5
Oracle Banking Trade Finance 14.5
Oracle Banking Treasury Management 14.5
Oracle Oss Support Tools 2.12.42
Oracle Flexcube Universal Banking 14.5
Oracle Middleware Common Libraries And Tools 12.2.1.3.0
Oracle Middleware Common Libraries And Tools 14.1.1.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-34265
open redirect
unauthorized
CVE-2022-2294
validation
CVE-2022-31600
CVE-2022-32095
CVE-2022-2284
CVE-2022-31601
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »