Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle database server 7.3.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-0857
Format string vulnerabilities in Oracle Listener Control utility (lsnrctl) for Oracle 9.2 and 9.0, 8.1, and 7.3.4, allow remote malicious users to execute arbitrary code on the Oracle DBA system by placing format strings into certain entries in the listener.ora configuration file...
Oracle Oracle8i 8.1
Oracle Database Server 9.2
Oracle Database Server 9.0
Oracle Database Server 7.3.4
NA
CVE-1999-0888
dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script.
Oracle Database Server 7.3.3
Oracle Oracle8i 8.0.4
Oracle Oracle8i 8.0.5.1
Oracle Oracle8i 8.0.3
Oracle Oracle8i 8.0.5
Oracle Oracle8i 8.1.5
Oracle Database Server 7.3.4
2 EDB exploits
NA
CVE-2003-0222
Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and previous versions allows malicious users to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter.
Oracle Database Server 8.0.5.1
Oracle Oracle8i 8.0x
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle8i 8.0.6
Oracle Database Server 8.1.7
Oracle Database Server 8.1.5
Oracle Oracle9i 9.0
Oracle Oracle8i 8.1.6
Oracle Database Server 9.2.1
Oracle Oracle9i 9.2.0.1
Oracle Oracle9i 9.2.0.2
Oracle Oracle8i 8.1x
Oracle Database Server 7.3.3
Oracle Database Server 8.0.4
Oracle Oracle8i 8.1.7.4
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
Oracle Database Server 8.0.5
Oracle Database Server 8.0.2
Oracle Oracle9i 9.0.1.3
Oracle Oracle8i 8.0.6.3
NA
CVE-2005-3641
Oracle Databases running on Windows XP with Simple File Sharing enabled, allows remote malicious users to bypass authentication by supplying a valid username.
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle9i Standard 9.0.2
Oracle Database Server 8.0.5.1
Oracle Oracle8i Standard 8.1.7.4
Oracle Oracle8i Enterprise 8.1.5.0.0
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Oracle9i Standard 9.0.1.4
Oracle Database Server 8.1.7.4
Oracle Oracle8i Enterprise 8.1.6.0.0
Oracle Oracle9i Personal 8.1.7
Oracle Database Server Lite 5.0
Oracle Oracle9i Personal 9.0.4
Oracle Oracle9i Enterprise 9.0.2.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Database Server 8.1.7
Oracle Oracle8i Standard 8.1.7.1
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle8i Standard 8.0.6
Oracle Database Server 8.1.5
Oracle Oracle9i Personal 9.0.1.5
6.5
CVSSv3
CVE-2019-3740
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys.
Dell Bsafe Ssl-j
Dell Bsafe Crypto-j
Dell Bsafe Cert-j
Oracle Retail Service Backbone 14.1
Oracle Retail Integration Bus 14.1
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Service Backbone 15.0
Oracle Retail Integration Bus 15.0
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Retail Predictive Application Server 15.0
Oracle Retail Integration Bus 16.0
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Retail Xstore Point Of Service 17.0.3
Oracle Weblogic Server 12.2.1.4.0
Oracle Application Performance Management 13.3.0.0
Oracle Weblogic Server 14.1.1.0.0
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
6.5
CVSSv3
CVE-2019-3738
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable shared key.
Dell Bsafe Ssl-j
Dell Bsafe Crypto-j
Dell Bsafe Cert-j
Mcafee Threat Intelligence Exchange Server 3.0.0
Mcafee Threat Intelligence Exchange Server
Oracle Retail Service Backbone 14.1
Oracle Retail Integration Bus 14.1
Oracle Retail Service Backbone 15.0
Oracle Retail Integration Bus 15.0
Oracle Retail Integration Bus 16.0
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Retail Xstore Point Of Service 17.0.3
Oracle Application Performance Management 13.3.0.0
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 18c
Oracle Database 19c
Oracle Retail Assortment Planning 15.0.3.0
Oracle Retail Predictive Application Server 14.1.3.0
7.5
CVSSv3
CVE-2018-11054
RSA BSAFE Micro Edition Suite, version 4.1.6, contains an integer overflow vulnerability. A remote attacker could use maliciously constructed ASN.1 data to potentially cause a Denial Of Service.
Dell Bsafe 4.1.6
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Security Service 12.1.3.0.0
Oracle Enterprise Manager Ops Center 12.3.3
Oracle Security Service 11.1.1.9.0
Oracle Security Service 12.2.1.2.0
Oracle Application Testing Suite 13.3.0.1
Oracle Retail Predictive Application Server 15.0.3
Oracle Enterprise Manager Ops Center 12.4.0
Oracle Communications Ip Service Activator 7.4.0
Oracle Core Rdbms 11.2.0.4
Oracle Core Rdbms 12.2.0.1
Oracle Core Rdbms 12.1.0.2
Oracle Core Rdbms 19c
Oracle Core Rdbms 18c
Oracle Goldengate Application Adapters 12.3.2.1.0
Oracle Communications Analytics 12.1.1
Oracle Real User Experience Insight 13.3.1.0
Oracle Retail Predictive Application Server 16.0.3
Oracle Communications Ip Service Activator 7.3.4
Oracle Real User Experience Insight 13.1.2.1
Oracle Real User Experience Insight 13.2.3.1
5.9
CVSSv3
CVE-2018-11039
Spring Framework (versions 5.0.x before 5.0.7, versions 4.3.x before 4.3.18, and older unsupported versions) allow web applications to change the HTTP request method to any HTTP method (including TRACE) using the HiddenHttpMethodFilter in Spring MVC. If an application has a pre-e...
Vmware Spring Framework
Oracle Retail Xstore Point Of Service 7.1
Oracle Weblogic Server 12.1.3.0.0
Oracle Application Testing Suite 12.5.0.3
Oracle Hospitality Guest Access 4.2.0
Oracle Hospitality Guest Access 4.2.1
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Enterprise Manager Ops Center 12.3.3
Oracle Primavera P6 Enterprise Project Portfolio Management 18.8
Oracle Endeca Information Discovery Integrator 3.2.0
Oracle Endeca Information Discovery Integrator 3.1.0
Oracle Application Testing Suite 13.1.0.1
Oracle Application Testing Suite 13.2.0.1
Oracle Application Testing Suite 13.3.0.1
Oracle Communications Diameter Signaling Router
Oracle Communications Performance Intelligence Center
Oracle Insurance Rules Palette 10.0
Oracle Insurance Rules Palette 10.2
Oracle Communications Services Gatekeeper
Oracle Health Sciences Information Manager 3.0
Oracle Healthcare Master Person Index 3.0
1 Github repository
6.1
CVSSv3
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate Validator
Redhat Hibernate Validator 6.1.0
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Redhat Fuse 1.0
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Netapp Active Iq Unified Manager -
Netapp Element -
Netapp Snapcenter Plug-in -
Netapp Management Services For Element Software And Netapp Hci -
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Solaris 11
Oracle Flexcube Private Banking 12.1.0
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Flexcube Private Banking 12.0.0
Oracle Flexcube Investor Servicing 12.0.4
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Integration Bus 13.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started