Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-3389 | 4.3 |
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man
|
29-11-2022 - 15:56 | 06-09-2011 - 19:55 | |
CVE-2017-3585 | 5.0 |
Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: User Interface subsystem). The supported version that is affected is AK 2013. Easily "exploitable" vulnerability allows unauthentica
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3584 | 4.4 |
Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: RAS subsystems). The supported version that is affected is AK 2013. Difficult to exploit vulnerability allows low privileged attacke
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3638 | 4.0 |
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multi
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
CVE-2017-3586 | 5.5 |
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.41 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multip
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3565 | 4.1 |
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: RBAC). The supported version that is affected is 11.3. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3515 | 5.8 |
Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: User Name/Password Management). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily "exploitable" vulnerability all
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3497 | 7.5 |
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Remote Administration Daemon). The supported version that is affected is 11.3. Easily "exploitable" vulnerability allows unauthenticated attacker with network
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3484 | 5.5 |
Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications (subcomponent: Limits and Collateral). Supported versions that are affected are 12.0.0 and 12.1.0. Easily "exploitabl
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3237 | 7.2 |
Vulnerability in the Automatic Service Request (ASR) component of Oracle Support Tools (subcomponent: ASR Manager). The supported version that is affected is Prior to 5.7. Easily "exploitable" vulnerability allows low privileged attacker with logon t
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3528 | 5.8 |
Vulnerability in the Oracle Applications Framework component of Oracle E-Business Suite (subcomponent: Popup windows (lists of values, datepicker, etc.)). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily "exp
|
03-10-2019 - 00:03 | 24-04-2017 - 19:59 | |
CVE-2017-3556 | 5.0 |
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite (subcomponent: File Management). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Difficult to exploit vulnerability allows
|
10-12-2018 - 19:29 | 24-04-2017 - 19:59 | |
CVE-2004-0189 | 7.5 |
The "%xx" URL decoding function in Squid 2.5STABLE4 and earlier allows remote attackers to bypass url_regex ACLs via a URL with a NULL ("%00") character, which causes Squid to use only a portion of the requested URL when comparing it against the acce
|
10-10-2017 - 01:30 | 15-03-2004 - 05:00 | |
CVE-2008-2640 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifi
|
08-08-2017 - 01:31 | 18-06-2008 - 19:41 |