Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle database server 7.3.4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-0857
Format string vulnerabilities in Oracle Listener Control utility (lsnrctl) for Oracle 9.2 and 9.0, 8.1, and 7.3.4, allow remote malicious users to execute arbitrary code on the Oracle DBA system by placing format strings into certain entries in the listener.ora configuration file...
Oracle Oracle8i 8.1
Oracle Database Server 7.3.4
Oracle Database Server 9.0
Oracle Database Server 9.2
4.6
CVSSv2
CVE-1999-0888
dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script.
Oracle Database Server 7.3.3
Oracle Oracle8i 8.0.3
Oracle Oracle8i 8.0.4
Oracle Oracle8i 8.0.5
Oracle Oracle8i 8.0.5.1
Oracle Database Server 7.3.4
Oracle Oracle8i 8.1.5
2 EDB exploits
9
CVSSv2
CVE-2003-0222
Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and previous versions allows malicious users to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter.
Oracle Database Server 7.3.3
Oracle Database Server 7.3.4
Oracle Database Server 8.0.6
Oracle Database Server 8.1.5
Oracle Database Server 8.1.6
Oracle Oracle8i 8.1.5
Oracle Oracle8i 8.1.6
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.1.3
Oracle Database Server 8.0.1
Oracle Database Server 8.0.2
Oracle Database Server 8.1.7
Oracle Database Server 9.2.1
Oracle Oracle8i 8.1.7
Oracle Oracle8i 8.1.7.1
Oracle Oracle9i 9.0.1.4
Oracle Oracle9i 9.0.2
Oracle Database Server 8.0.3
Oracle Database Server 8.0.4
Oracle Database Server 9.2.2
Oracle Oracle8i 8.0.6
Oracle Oracle8i 8.1.7.4
7.5
CVSSv2
CVE-2005-3641
Oracle Databases running on Windows XP with Simple File Sharing enabled, allows remote malicious users to bypass authentication by supplying a valid username.
Oracle Database Server 7.0.64
Oracle Database Server 8.0.3
Oracle Database Server 8.0.5
Oracle Database Server 8.1.6
Oracle Database Server 8.1.7.4
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Enterprise 9.0.4.0
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle10g Standard 10.1.0.4
Oracle Oracle8i Enterprise 8.0.6.0.1
Oracle Oracle8i Enterprise 8.1.5.0.2
Oracle Oracle8i Enterprise 8.1.6.0.0
Oracle Oracle8i Standard 8.0.6
Oracle Oracle8i Standard 8.1.5
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.0.1.5
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.6
Oracle Oracle9i Personal 9.0.1.5 Fips
Oracle Oracle9i Personal 9.0.4
Oracle Oracle9i Standard 8.1.7
4.3
CVSSv2
CVE-2019-3740
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys.
Dell Bsafe Ssl-j
Dell Bsafe Crypto-j
Dell Bsafe Cert-j
Oracle Retail Service Backbone 14.1
Oracle Retail Integration Bus 14.1
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Service Backbone 15.0
Oracle Retail Integration Bus 15.0
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Retail Predictive Application Server 15.0
Oracle Retail Integration Bus 16.0
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Retail Xstore Point Of Service 17.0.3
Oracle Weblogic Server 12.2.1.4.0
Oracle Application Performance Management 13.3.0.0
Oracle Weblogic Server 14.1.1.0.0
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
4.3
CVSSv2
CVE-2019-3738
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable shared key.
Dell Bsafe Ssl-j
Dell Bsafe Crypto-j
Dell Bsafe Cert-j
Mcafee Threat Intelligence Exchange Server 3.0.0
Mcafee Threat Intelligence Exchange Server
Oracle Retail Service Backbone 14.1
Oracle Retail Integration Bus 14.1
Oracle Retail Service Backbone 15.0
Oracle Retail Integration Bus 15.0
Oracle Retail Integration Bus 16.0
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Retail Xstore Point Of Service 17.0.3
Oracle Application Performance Management 13.3.0.0
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 18c
Oracle Database 19c
Oracle Retail Assortment Planning 15.0.3.0
Oracle Retail Predictive Application Server 14.1.3.0
5
CVSSv2
CVE-2018-11054
RSA BSAFE Micro Edition Suite, version 4.1.6, contains an integer overflow vulnerability. A remote attacker could use maliciously constructed ASN.1 data to potentially cause a Denial Of Service.
Dell Bsafe 4.1.6
Oracle Application Testing Suite 13.3.0.1
Oracle Communications Analytics 12.1.1
Oracle Communications Ip Service Activator 7.3.4
Oracle Communications Ip Service Activator 7.4.0
Oracle Core Rdbms 11.2.0.4
Oracle Core Rdbms 12.1.0.2
Oracle Core Rdbms 12.2.0.1
Oracle Core Rdbms 18c
Oracle Core Rdbms 19c
Oracle Enterprise Manager Ops Center 12.3.3
Oracle Enterprise Manager Ops Center 12.4.0
Oracle Goldengate Application Adapters 12.3.2.1.0
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Real User Experience Insight 13.1.2.1
Oracle Real User Experience Insight 13.2.3.1
Oracle Real User Experience Insight 13.3.1.0
Oracle Retail Predictive Application Server 15.0.3
Oracle Retail Predictive Application Server 16.0.3
Oracle Security Service 11.1.1.9.0
Oracle Security Service 12.1.3.0.0
Oracle Security Service 12.2.1.2.0
4.3
CVSSv2
CVE-2018-11039
Spring Framework (versions 5.0.x before 5.0.7, versions 4.3.x before 4.3.18, and older unsupported versions) allow web applications to change the HTTP request method to any HTTP method (including TRACE) using the HiddenHttpMethodFilter in Spring MVC. If an application has a pre-e...
Vmware Spring Framework
Oracle Retail Xstore Point Of Service 7.1
Oracle Weblogic Server 12.1.3.0.0
Oracle Application Testing Suite 12.5.0.3
Oracle Hospitality Guest Access 4.2.0
Oracle Hospitality Guest Access 4.2.1
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Enterprise Manager Ops Center 12.3.3
Oracle Primavera P6 Enterprise Project Portfolio Management 18.8
Oracle Application Testing Suite 13.1.0.1
Oracle Application Testing Suite 13.2.0.1
Oracle Application Testing Suite 13.3.0.1
Oracle Communications Diameter Signaling Router
Oracle Communications Performance Intelligence Center
Oracle Communications Services Gatekeeper
Oracle Endeca Information Discovery Integrator 3.1.0
Oracle Endeca Information Discovery Integrator 3.2.0
Oracle Health Sciences Information Manager 3.0
Oracle Healthcare Master Person Index 3.0
Oracle Healthcare Master Person Index 4.0
Oracle Insurance Calculation Engine 10.2
1 Github repository
4.3
CVSSv2
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate Validator
Redhat Hibernate Validator 6.1.0
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Redhat Fuse 1.0
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Netapp Active Iq Unified Manager -
Netapp Element -
Netapp Snapcenter Plug-in -
Netapp Management Services For Element Software And Netapp Hci -
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Solaris 11
Oracle Flexcube Private Banking 12.1.0
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Flexcube Private Banking 12.0.0
Oracle Flexcube Investor Servicing 12.0.4
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Integration Bus 13.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started