Oracle

Coherence

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-21570

  • EPSS 0.97%
  • Veröffentlicht 19.07.2022 22:15:13
  • Zuletzt bearbeitet 21.11.2024 06:44:58

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker wit...

7.5

CVE-2022-21420

  • EPSS 1.79%
  • Veröffentlicht 19.04.2022 21:15:14
  • Zuletzt bearbeitet 21.11.2024 06:44:39

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network...

7.5

CVE-2020-36518

Exploit
  • EPSS 0.6%
  • Veröffentlicht 11.03.2022 07:15:07
  • Zuletzt bearbeitet 27.08.2025 21:15:36

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.

6.5

CVE-2021-43797

  • EPSS 0.18%
  • Veröffentlicht 09.12.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:29:48

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. Netty prior to version 4.1.71.Final skips control chars when they are present at the beginning / en...

7.5

CVE-2021-37136

  • EPSS 0.23%
  • Veröffentlicht 19.10.2021 15:15:07
  • Zuletzt bearbeitet 21.11.2024 06:14:42

The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression). All users of Bzip2Decoder are affected. The malicious input can trigger an...

6.8

CVE-2021-2428

  • EPSS 1.09%
  • Veröffentlicht 21.07.2021 15:16:01
  • Zuletzt bearbeitet 21.11.2024 06:03:06

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Difficult to exploit vulnerability allows unauthenticated attacke...

5

CVE-2021-2371

  • EPSS 1.4%
  • Veröffentlicht 21.07.2021 15:15:31
  • Zuletzt bearbeitet 21.11.2024 06:02:59

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...

5

CVE-2021-2344

  • EPSS 1.64%
  • Veröffentlicht 21.07.2021 15:15:19
  • Zuletzt bearbeitet 21.11.2024 06:02:55

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...

5

CVE-2021-2277

  • EPSS 2.23%
  • Veröffentlicht 22.04.2021 22:15:16
  • Zuletzt bearbeitet 21.11.2024 06:02:47

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...

5.9

CVE-2021-21409

  • EPSS 4.98%
  • Veröffentlicht 30.03.2021 15:15:14
  • Zuletzt bearbeitet 21.11.2024 05:48:17

Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. In Netty (io.netty:netty-codec-http2) before version 4.1.61.Final there is a vulnerabi...