Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5767
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.12 and previous versions allows remote authenticated users to affect availability via unknown vectors related to Optimizer.
Oracle Mysql 5.6.11
Oracle Mysql 5.6.2
Oracle Mysql 5.6.9
Oracle Mysql 5.6.1
Oracle Mysql 5.6.10
Oracle Mysql 5.6.7
Oracle Mysql 5.6.8
Oracle Mysql 5.6.3
Oracle Mysql 5.6.4
Oracle Mysql
Oracle Mysql 5.6.0
Oracle Mysql 5.6.5
Oracle Mysql 5.6.6
NA
CVE-2013-5786
Unspecified vulnerability in Oracle MySQL Server 5.6.12 and previous versions allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2013-5793.
Oracle Mysql
Oracle Mysql 5.6.0
Oracle Mysql 5.6.5
Oracle Mysql 5.6.6
Oracle Mysql 5.6.1
Oracle Mysql 5.6.10
Oracle Mysql 5.6.7
Oracle Mysql 5.6.8
Oracle Mysql 5.6.11
Oracle Mysql 5.6.2
Oracle Mysql 5.6.9
Oracle Mysql 5.6.3
Oracle Mysql 5.6.4
NA
CVE-2013-5793
Unspecified vulnerability in Oracle MySQL Server 5.6.12 and previous versions allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2013-5786.
Oracle Mysql 5.6.2
Oracle Mysql 5.6.3
Oracle Mysql 5.6.4
Oracle Mysql 5.6.11
Oracle Mysql
Oracle Mysql 5.6.9
Oracle Mysql 5.6.1
Oracle Mysql 5.6.10
Oracle Mysql 5.6.7
Oracle Mysql 5.6.8
Oracle Mysql 5.6.0
Oracle Mysql 5.6.5
Oracle Mysql 5.6.6
NA
CVE-2013-2380
Unspecified vulnerability in the Oracle JRockit component in Oracle Fusion Middleware R27.7.4 and previous versions and R28.2.6 and previous versions allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this might be a du...
Oracle Jrockit R27.2
Oracle Jrockit R27.1
Oracle Jrockit R28.1.4
Oracle Fusion Middleware -
Oracle Jrockit
Oracle Jrockit R28.0.0
Oracle Jrockit R28.0.1
Oracle Jrockit R28.0.2
Oracle Jrockit R28.1.0
Oracle Jrockit R27.3.1
Oracle Jrockit R27.3
Oracle Jrockit R28.1.1
Oracle Jrockit R28.1.3
NA
CVE-2004-1364
Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote malicious users to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Collaboration Suite Release 1
Oracle Application Server
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager Database Control 10.1.2
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.1.7 .1
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.2
Oracle Oracle9i Personal 9.0.1.5
Oracle Oracle9i Personal 9.2
Oracle Oracle9i Standard 9.0
2 EDB exploits
NA
CVE-2004-1365
Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.4.1
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.9
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle8i Standard 8.1.5
Oracle Oracle8i Standard 8.1.6
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 8.1.7
Oracle Oracle9i Personal 9.2.0.3
Oracle Oracle9i Personal 9.2.0.4
Oracle Oracle9i Standard 9.0.1.4
Oracle Oracle9i Standard 9.0.1.5
Oracle Application Server
NA
CVE-2004-1366
Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.
Oracle Application Server
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle E-business Suite 11.5.3
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.4.1
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.9
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Standard 8.1.5
Oracle Oracle8i Standard 8.1.6
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.3
NA
CVE-2004-1368
ISQL*Plus in Oracle 10g Application Server allows remote malicious users to execute arbitrary files via an absolute pathname in the file parameter to the load.uix script.
Oracle Application Server
Oracle Application Server 9.0.2
Oracle Application Server 9.0.4
Oracle Application Server 9.0.4.0
Oracle E-business Suite 11.5.5
Oracle E-business Suite 11.5.6
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.5 .0.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.2.3
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle E-business Suite 11.5.3
Oracle E-business Suite 11.5.4
Oracle Enterprise Manager 9.0.1
Oracle Enterprise Manager Database Control 10.1.2
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle8i Enterprise 8.0.5 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.0
NA
CVE-2004-1369
The TNS Listener in Oracle 10g allows remote malicious users to cause a denial of service (listener crash) via a malformed service_register_NSGR request containing a value that is used as an invalid offset for a pointer that references incorrect memory.
Oracle Application Server 9.0.2.0.0
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.4.0
Oracle Application Server 9.0.4.1
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle Oracle10g Enterprise 9.0.4 .0
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle8i Enterprise 8.1.5 .0.0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Standard 8.0.6 .3
Oracle Oracle8i Standard 8.1.5
Oracle Oracle9i Client 9.2.0.2
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.1
NA
CVE-2004-1370
Multiple SQL injection vulnerabilities in PL/SQL procedures that run with definer rights in Oracle 9i and 10g allow remote malicious users to execute arbitrary SQL commands and gain privileges via (1) DBMS_EXPORT_EXTENSION, (2) WK_ACL.GET_ACL, (3) WK_ACL.STORE_ACL, (4) WK_ADM.COM...
Oracle Application Server
Oracle Application Server 9.0.2
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.0.6
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Client 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.2
Oracle Oracle9i Personal 9.0.1.5
Oracle Oracle9i Personal 9.2
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Standard 9.0.1
Oracle Oracle9i Standard 9.0.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »