Oracle

Coherence

16 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-21570

  • EPSS 0.97%
  • Published 19.07.2022 22:15:13
  • Last modified 21.11.2024 06:44:58

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker wit...

7.5

CVE-2022-21420

  • EPSS 1.79%
  • Published 19.04.2022 21:15:14
  • Last modified 21.11.2024 06:44:39

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network...

7.5

CVE-2020-36518

Exploit
  • EPSS 0.6%
  • Published 11.03.2022 07:15:07
  • Last modified 27.08.2025 21:15:36

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.

6.5

CVE-2021-43797

  • EPSS 0.18%
  • Published 09.12.2021 19:15:07
  • Last modified 21.11.2024 06:29:48

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. Netty prior to version 4.1.71.Final skips control chars when they are present at the beginning / en...

7.5

CVE-2021-37136

  • EPSS 0.23%
  • Published 19.10.2021 15:15:07
  • Last modified 21.11.2024 06:14:42

The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression). All users of Bzip2Decoder are affected. The malicious input can trigger an...

6.8

CVE-2021-2428

  • EPSS 1.09%
  • Published 21.07.2021 15:16:01
  • Last modified 21.11.2024 06:03:06

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Difficult to exploit vulnerability allows unauthenticated attacke...

5

CVE-2021-2371

  • EPSS 1.4%
  • Published 21.07.2021 15:15:31
  • Last modified 21.11.2024 06:02:59

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...

5

CVE-2021-2344

  • EPSS 1.64%
  • Published 21.07.2021 15:15:19
  • Last modified 21.11.2024 06:02:55

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...

5

CVE-2021-2277

  • EPSS 2.23%
  • Published 22.04.2021 22:15:16
  • Last modified 21.11.2024 06:02:47

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...

5.9

CVE-2021-21409

  • EPSS 4.98%
  • Published 30.03.2021 15:15:14
  • Last modified 21.11.2024 05:48:17

Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. In Netty (io.netty:netty-codec-http2) before version 4.1.61.Final there is a vulnerabi...