CVE-2022-21431 Oracle Communications Billing and Revenue Management product is vulnerable to a vulnerability in versions 12.0.0.4 and 12.0.0.5.
Exploitation of vulnerabilities requires physical access to the device or remote access to the device with user privileges. Access via network devices may be difficult.
CVE-2022-21445 Oracle JDeveloper is vulnerable to CVE-2016-2115. Both versions 12.2.1.3.0 and 12.2.1.4.0 are affected.
In addition, it is possible to conduct SQL injection attacks. It is also possible to bypass access restriction mechanisms (e.g., try anonymous connections). If
CVE-2022-21443 Vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition.
by using the Java reflection or Java code execution capabilities. These are but a few of the ways to exploit this vulnerability. Successful exploitation requires
CVE-2022-21434 Vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition.
by using the CORBA, JDBC, Java Message Service, Remote Method Invocation, and JavaScript frameworks. In a hybrid deployment where certain Oracle GraalVM Enterprise Edition components
CVE-2022-21496 An issue in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE causes JNDI to be vulnerable.
by using APIs in the specified Component, e.g. through a web service call, or by using an application with network access via multiple protocols,
Episode
00:00:00
00:00:00