Skip to main content
CVE-2020-2719 MEDIUM PATCH This Month

Vulnerability in the Oracle Banking Corporate Lending product of Oracle Financial Services Applications (component: Core). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Banking Corporate Lending
NVD
CVSS 3.1
4.3
EPSS
0.9%
CVE-2020-2714 MEDIUM PATCH This Month

Vulnerability in the Oracle Banking Payments product of Oracle Financial Services Applications (component: Core). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Banking Payments
NVD
CVSS 3.1
4.3
EPSS
0.9%
CVE-2020-2700 MEDIUM PATCH This Month

Vulnerability in the Oracle FLEXCUBE Universal Banking product of Oracle Financial Services Applications (component: Infrastructure). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Flexcube Universal Banking
NVD
CVSS 3.1
4.3
EPSS
0.9%
CVE-2020-2687 MEDIUM PATCH This Month

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Elastic Search). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Elastic Oracle Authentication Bypass Peoplesoft Enterprise Peopletools
NVD
CVSS 3.1
4.3
EPSS
1.4%
CVE-2020-2561 MEDIUM PATCH This Month

Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft (component: Company Dir / Org Chart Viewer). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Peoplesoft Enterprise Human Capital Management Human Resources
NVD
CVSS 3.1
4.3
EPSS
0.8%
CVE-2020-2544 MEDIUM PATCH This Month

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Weblogic Server
NVD
CVSS 3.1
4.3
EPSS
1.0%
CVE-2020-2519 MEDIUM PATCH This Month

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Oracle Weblogic Server
NVD
CVSS 3.1
4.3
EPSS
1.2%
CVE-2020-2095 MEDIUM PATCH This Month

Jenkins Redgate SQL Change Automation Plugin 2.0.4 and earlier stored an API key unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Redgate Sql Change Automation
NVD
CVSS 3.1
4.3
EPSS
0.9%
CVE-2020-2094 MEDIUM PATCH This Month

A missing permission check in Jenkins Health Advisor by CloudBees Plugin 3.0 and earlier allows attackers with Overall/Read permission to send a fixed email to an attacker-specific recipient. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Authentication Bypass Health Advisor By Cloudbees
NVD
CVSS 3.1
4.3
EPSS
0.8%
CVE-2020-5501 MEDIUM PATCH This Month

phpBB 3.2.8 allows a CSRF attack that can modify a group avatar. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Phpbb
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2020-2599 MEDIUM PATCH This Month

Vulnerability in the Oracle Hospitality Cruise Materials Management product of Oracle Hospitality Applications (component: MMS All). Rated medium severity (CVSS 4.2), this vulnerability is no authentication required.

Oracle Authentication Bypass Hospitality Cruise Materials Management
NVD
CVSS 3.1
4.2
EPSS
0.4%
CVE-2020-2563 MEDIUM PATCH This Month

Vulnerability in the Hyperion Financial Close Management product of Oracle Hyperion (component: Close Manager). Rated medium severity (CVSS 4.2), this vulnerability is remotely exploitable.

Oracle Authentication Bypass Hyperion Financial Close Management
NVD
CVSS 3.1
4.2
EPSS
0.8%
CVE-2020-2527 MEDIUM PATCH This Month

Vulnerability in the Core RDBMS component of Oracle Database Server. Rated medium severity (CVSS 4.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Database Server
NVD
CVSS 3.1
4.1
EPSS
1.0%
CVE-2020-2581 MEDIUM PATCH This Month

Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: LLVM Interpreter). Rated medium severity (CVSS 4.0), this vulnerability is no authentication required, low attack complexity.

Denial Of Service Oracle Graalvm
NVD
CVSS 3.1
4.0
EPSS
0.4%
CVE-2020-2731 LOW PATCH Monitor

Vulnerability in the Core RDBMS component of Oracle Database Server. Rated low severity (CVSS 3.9), this vulnerability is low attack complexity.

Denial Of Service Oracle Database Server
NVD
CVSS 3.1
3.9
EPSS
0.4%
CVE-2020-2569 LOW PATCH Monitor

Vulnerability in the Oracle Applications DBA component of Oracle Database Server. Rated low severity (CVSS 3.9), this vulnerability is low attack complexity.

Denial Of Service Oracle Applications Dba
NVD
CVSS 3.1
3.9
EPSS
0.3%
CVE-2020-2568 LOW PATCH Monitor

Vulnerability in the Oracle Applications DBA component of Oracle Database Server. Rated low severity (CVSS 3.9), this vulnerability is low attack complexity.

Denial Of Service Oracle Applications Dba
NVD
CVSS 3.1
3.9
EPSS
0.7%
CVE-2020-2659 LOW PATCH Monitor

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.

Java Denial Of Service Oracle Jdk Jre +21
NVD
CVSS 3.1
3.7
EPSS
4.2%
CVE-2020-2654 LOW PATCH Monitor

Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.

Java Denial Of Service Oracle Jdk Jre +21
NVD
CVSS 3.1
3.7
EPSS
3.8%
CVE-2020-2590 LOW PATCH Monitor

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.

Java Oracle Authentication Bypass Jdk Jre +22
NVD
CVSS 3.1
3.7
EPSS
3.1%
CVE-2020-2583 LOW PATCH Monitor

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.

Java Denial Of Service Oracle Jdk Jre +22
NVD
CVSS 3.1
3.7
EPSS
4.0%
CVE-2020-2649 LOW PATCH Monitor

Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Internal Operations). Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Oracle Authentication Bypass Retail Customer Management And Segmentation Foundation
NVD
CVSS 3.1
3.3
EPSS
0.4%
CVE-2020-2571 LOW PATCH Monitor

Vulnerability in the Oracle VM Server for SPARC product of Oracle Systems (component: Templates). Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity.

Oracle Authentication Bypass Vm Server
NVD
CVSS 3.1
3.3
EPSS
0.4%
CVE-2020-2517 LOW PATCH Monitor

Vulnerability in the Database Gateway for ODBC component of Oracle Database Server. Rated low severity (CVSS 3.3), this vulnerability is remotely exploitable.

Denial Of Service Oracle Database Server
NVD
CVSS 3.1
3.3
EPSS
0.8%
CVE-2020-2694 LOW PATCH Monitor

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable.

Oracle Authentication Bypass MySQL Ubuntu Linux Active Iq Unified Manager +3
NVD
CVSS 3.1
3.1
EPSS
1.5%
CVE-2020-2531 LOW PATCH Monitor

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: BI Platform Security). Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable, no authentication required.

Oracle Authentication Bypass Business Intelligence
NVD
CVSS 3.1
3.1
EPSS
1.1%
CVE-2020-2572 LOW PATCH Monitor

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Audit Plugin). Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass MySQL Ubuntu Linux Active Iq Unified Manager +3
NVD
CVSS 3.1
2.7
EPSS
1.3%
CVE-2020-2516 LOW PATCH Monitor

Vulnerability in the Core RDBMS component of Oracle Database Server. Rated low severity (CVSS 2.4), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Database Server
NVD
CVSS 3.1
2.4
EPSS
0.8%
Prev Page 5 of 5

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy