Vulnerabilities in Oracle

224 results
Vexday analysis

Com 224 CVEs catalogadas e nenhuma em exploração ativa confirmada pelo CISA KEV, a taxa de exploração da Oracle neste conjunto está abaixo da média geral do catálogo. Apesar da ausência de vulnerabilidades críticas formalmente classificadas e de novas ocorrências nos últimos 90 dias, a presença de CVE-2017-3248 com EPSS de 0,973 indica probabilidade muito elevada de exploração ativa segundo os modelos preditivos, exigindo atenção redobrada de equipes que ainda não aplicaram as correções correspondentes. Três vulnerabilidades possuem PoC pública disponível, o que amplia a superfície de risco para organizações que mantêm versões desatualizadas. O conjunto de dados sugere um perfil de risco residual concentrado em vulnerabilidades mais antigas, onde a janela de remediação já foi amplamente ultrapassada.

CVE-2016-8314Vulnerability in the Oracle FLEXCUBE Core Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versioEPSS 1.1%CVE-2016-5623Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / InstrumentEPSS 1.1%CVE-2016-8306Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Core). Supported EPSS 1.0%CVE-2016-8317Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Unit Trust). SuppEPSS 1.0%CVE-2017-3264Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: Open UI). The supported version that is affected is 1EPSS 1.0%CVE-2016-8323Vulnerability in the Oracle FLEXCUBE Core Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versioEPSS 0.9%CVE-2016-8316Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Core). Supported EPSS 0.8%CVE-2016-8304Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported vEPSS 0.8%CVE-2017-3320Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that are affectEPSS 0.8%CVE-2017-3318Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Error Handling). Supported versions that are affected areEPSS 0.5%CVE-2016-8305Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported vEPSS 0.4%CVE-2017-3312Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.EPSS 0.4%CVE-2017-3301Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is affected iEPSS 0.4%CVE-2017-3313Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 EPSS 0.4%CVE-2017-3239Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Administration). Supported versions that aEPSS 0.4%CVE-2017-3235Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported vEPSS 0.4%CVE-2017-3286Vulnerability in the Oracle Applications DBA component of Oracle E-Business Suite (subcomponent: Patching). Supported versions that are affeEPSS 0.4%CVE-2017-3246Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite (subcomponent: Patching). Supported versions thaEPSS 0.4%CVE-2017-3317Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Logging). Supported versions that are affected are 5.5.53 and earEPSS 0.4%CVE-2017-3240Vulnerability in the RDBMS Security component of Oracle Database Server. The supported version that is affected is 12.1.0.2. Easily exploitaEPSS 0.4%