CVE
Vendors
Products
Updated
CVSS v2
CVSS v3
Fujitsu_m10-1_firmware, Fujitsu_m10-1, Fujitsu_m10-4_firmware, Fujitsu_m10-4, Fujitsu_m10-4s_firmware, Fujitsu_m10-4s, Fujitsu_m12-1_firmware, Fujitsu_m12-1, Fujitsu_m12-2_firmware, Fujitsu_m12-2
2023-01-24
N/A
5.3 MEDIUM
Vulnerability in the PeopleSoft Enterprise CS Academic Advisement product of Oracle PeopleSoft (component: Advising Notes). The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise CS Academic Advisement. Successful attacks of this vulnerability can result in unauthorized read access to a subset of PeopleSoft Enterprise CS Academic Advisement accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).
Zulu, Fujitsu_m10-1_firmware, Fujitsu_m10-1, Fujitsu_m10-4_firmware, Fujitsu_m10-4, Fujitsu_m10-4s_firmware, Fujitsu_m10-4s, Fujitsu_m12-1_firmware, Fujitsu_m12-1, Fujitsu_m12-2_firmware, Fujitsu_m12-2
2023-01-24
N/A
5.3 MEDIUM
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf; Oracle GraalVM Enterprise Edition: 20.3.8 and 21.3.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).
Fujitsu_m10-1_firmware, Fujitsu_m10-1, Fujitsu_m10-4_firmware, Fujitsu_m10-4, Fujitsu_m10-4s_firmware, Fujitsu_m10-4s, Fujitsu_m12-1_firmware, Fujitsu_m12-1, Fujitsu_m12-2_firmware, Fujitsu_m12-2
2023-01-24
N/A
6.3 MEDIUM
Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database RDBMS Security. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Database RDBMS Security accessible data as well as unauthorized read access to a subset of Oracle Database RDBMS Security accessible data. CVSS 3.1 Base Score 6.3 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N).
Fujitsu_m10-1_firmware, Fujitsu_m10-1, Fujitsu_m10-4_firmware, Fujitsu_m10-4, Fujitsu_m10-4s_firmware, Fujitsu_m10-4s, Fujitsu_m12-1_firmware, Fujitsu_m12-1, Fujitsu_m12-2_firmware, Fujitsu_m12-2
2023-01-24
N/A
8.1 HIGH
Vulnerability in the Oracle Hospitality Reporting and Analytics product of Oracle Food and Beverage Applications (component: Reporting). The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle Hospitality Reporting and Analytics. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Hospitality Reporting and Analytics accessible data as well as unauthorized access to critical data or complete access to all Oracle Hospitality Reporting and Analytics accessible data. CVSS 3.1 Base Score 8.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N).
Fujitsu_m10-1_firmware, Fujitsu_m10-1, Fujitsu_m10-4_firmware, Fujitsu_m10-4, Fujitsu_m10-4s_firmware, Fujitsu_m10-4s, Fujitsu_m12-1_firmware, Fujitsu_m12-1, Fujitsu_m12-2_firmware, Fujitsu_m12-2
2023-01-24
N/A
4.3 MEDIUM
Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database Data Redaction. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Database Data Redaction accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).
Fujitsu_m10-1_firmware, Fujitsu_m10-1, Fujitsu_m10-4_firmware, Fujitsu_m10-4, Fujitsu_m10-4s_firmware, Fujitsu_m10-4s, Fujitsu_m12-1_firmware, Fujitsu_m12-1, Fujitsu_m12-2_firmware, Fujitsu_m12-2
2023-01-24
N/A
7.6 HIGH
Vulnerability in the Oracle Hospitality Reporting and Analytics product of Oracle Food and Beverage Applications (component: Reporting). The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle Hospitality Reporting and Analytics. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality Reporting and Analytics accessible data as well as unauthorized update, insert or delete access to some of Oracle Hospitality Reporting and Analytics accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Hospitality Reporting and Analytics. CVSS 3.1 Base Score 7.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:H).
Fujitsu_m10-1_firmware, Fujitsu_m10-1, Fujitsu_m10-4_firmware, Fujitsu_m10-4, Fujitsu_m10-4s_firmware, Fujitsu_m10-4s, Fujitsu_m12-1_firmware, Fujitsu_m12-1, Fujitsu_m12-2_firmware, Fujitsu_m12-2
2023-01-24
N/A
5.3 MEDIUM
Vulnerability in the Oracle iSupplier Portal product of Oracle E-Business Suite (component: Supplier Management). Supported versions that are affected are 12.2.6-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupplier Portal. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle iSupplier Portal accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).
Fujitsu_m10-1_firmware, Fujitsu_m10-1, Fujitsu_m10-4_firmware, Fujitsu_m10-4, Fujitsu_m10-4s_firmware, Fujitsu_m10-4s, Fujitsu_m12-1_firmware, Fujitsu_m12-1, Fujitsu_m12-2_firmware, Fujitsu_m12-2
2023-01-24
N/A
4.4 MEDIUM
Vulnerability in the Oracle Communications BRM - Elastic Charging Engine product of Oracle Communications Applications (component: Customer, Config, Pricing Manager). Supported versions that are affected are 12.0.0.3.0-12.0.0.7.0. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Communications BRM - Elastic Charging Engine executes to compromise Oracle Communications BRM - Elastic Charging Engine. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Communications BRM - Elastic Charging Engine accessible data. CVSS 3.1 Base Score 4.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).
20007_office_system, 27mhz_wireless_keyboard, 365_apps, 3d_builder, 3d_viewer, Access, Accessibility_insights_for_android, Accessibility_insights_for_web, Access_multilingual_user_interface_pack, Active_directory
2023-02-23
N/A
7.8 HIGH
Windows Graphics Component Remote Code Execution Vulnerability
20007_office_system, 27mhz_wireless_keyboard, 365_apps, 3d_builder, 3d_viewer, Access, Accessibility_insights_for_android, Accessibility_insights_for_web, Access_multilingual_user_interface_pack, Active_directory
2023-02-23
N/A
7.8 HIGH
Windows Graphics Component Elevation of Privilege Vulnerability