CVE-2022-21636 The Oracle Applications Framework is affected by a vulnerability in versions 12.2.6-12.2.11. Versions earlier than 12.2.6 are not affected.
Due to insecure session management, an attacker can hijack user session and perform any action on behalf of the victim.
Risk of escalated privileges (ROP)
CVE-2022-39428 Vulnerability in Oracle E-Business Suite Desktop Integrator product. Affected versions are 12.2.3-12.2.11.
Oracle has confirmed this issue and released a patch.
WebLogic 12.1.3 CVE-2017-10238
This issue has been patched by Oracle.
The importance of digital
CVE-2022-21592 MySql is prone to a security vulnerability that was discovered in versions 5.7.39 and 8.0.29.
Exploitation of this vulnerability requires authentication with user privileges oracle.
Impact CVSS 3.0 Severity Metrics:valeur Base Score 7.2 (Confidentiality high) Impact Subscore
CVE-2022-21633 Vulnerability in the MySQL Server product of Oracle MySQL that affects 8.0.30 and prior versions.
9. CVE-2016-6656 - XSS in phy-jdbc/src/main/java/org/phy/jdbc/SQLMap.java. CVSS:3.0/AV:N/AC:L/PROT:N/UI:N/
CVE-2022-21593 The Oracle HTTP Server is vulnerable to a vulnerability in 12.2.1.3.0 and 12.2.1.4.0 versions.
Unpatched Oracle products are vulnerable. Updates for these products do not yet exist. There are no known exploits for this vulnerability.
Unpatched Oracle products are
Episode
00:00:00
00:00:00