NVD - Home

<strong>BETA JSON Vulnerability Feeds Now Available!</strong>

New Data Feeds

CPE Ranges

Multiple different visualizations displaying word, CWE, CVSS score distribution and more!

Vulnerability Visualizations

The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, misconfigurations, product names, and impact metrics.

Last 20 Scored Vulnerability IDs & Summaries CVSS Severity

CVE-2018-2806 — Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). The supported version that is affected is 8.5.3. Easily exploitable vulnerability allows unauthenticated attacker with network... read CVE-2018-2806
Published: April 18, 2018; 10:29:04 PM -04:00

V3: 7.1 HIGH
V2: 5.8 MEDIUM
CVE-2018-2802 — Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (subcomponent: Client Application Loader). Supported versions that are affected are 2.8 and 2.9. Easily exploitable vulnerability allows low privileged atta... read CVE-2018-2802
Published: April 18, 2018; 10:29:04 PM -04:00

V3: 5.4 MEDIUM
V2: 5.5 MEDIUM
CVE-2018-2801 — Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Image Export SDK). The supported version that is affected is 8.5.3. Easily exploitable vulnerability allows unauthenticated attacker wit... read CVE-2018-2801
Published: April 18, 2018; 10:29:03 PM -04:00

V3: 7.1 HIGH
V2: 5.8 MEDIUM
CVE-2018-2793 — Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products (subcomponent: PsAdmin). Supported versions that are affected are 8.54, 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker... read CVE-2018-2793
Published: April 18, 2018; 10:29:03 PM -04:00

V3: 6.2 MEDIUM
V2: 2.1 LOW
CVE-2018-2773 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Difficult to exploit vulnerability allows high privileged a... read CVE-2018-2773
Published: April 18, 2018; 10:29:02 PM -04:00

V3: 4.1 MEDIUM
V2: 1.9 LOW
CVE-2018-2772 — Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Rich Text Editor). Supported versions that are affected are 8.54, 8.55 and 8.56. Easily exploitable vulnerability allows low privileged atta... read CVE-2018-2772
Published: April 18, 2018; 10:29:02 PM -04:00

V3: 8.8 HIGH
V2: 6.5 MEDIUM
CVE-2018-2771 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Locking). Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Difficult to exploit vulnerability allows high privileged a... read CVE-2018-2771
Published: April 18, 2018; 10:29:02 PM -04:00

V3: 4.4 MEDIUM
V2: 3.5 LOW
CVE-2018-2770 — Vulnerability in the Oracle Adaptive Access Manager component of Oracle Fusion Middleware (subcomponent: OAAM Admin). The supported version that is affected is 11.1.2.3.0. Easily exploitable vulnerability allows low privileged attacker with network a... read CVE-2018-2770
Published: April 18, 2018; 10:29:02 PM -04:00

V3: 7.6 HIGH
V2: 4.9 MEDIUM
CVE-2018-2769 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via mu... read CVE-2018-2769
Published: April 18, 2018; 10:29:02 PM -04:00

V3: 4.9 MEDIUM
V2: 4.0 MEDIUM
CVE-2018-2768 — Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). The supported version that is affected is 8.5.3. Easily exploitable vulnerability allows unauthenticated attacker with network... read CVE-2018-2768
Published: April 18, 2018; 10:29:02 PM -04:00

V3: 7.1 HIGH
V2: 5.8 MEDIUM
CVE-2018-2766 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.39 and prior and 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access v... read CVE-2018-2766
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 4.9 MEDIUM
V2: 6.8 MEDIUM
CVE-2018-2765 — Vulnerability in the Oracle Security Service component of Oracle Fusion Middleware (subcomponent: Oracle SSL API). Supported versions that are affected are 12.1.3.0.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker wi... read CVE-2018-2765
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 7.5 HIGH
V2: 5.0 MEDIUM
CVE-2018-2764 — Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). Supported versions that are affected are 10 and 11.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via NFS to... read CVE-2018-2764
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 7.5 HIGH
V2: 7.8 HIGH
CVE-2018-2763 — Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: NTPD). The supported version that is affected is 11.3. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where S... read CVE-2018-2763
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 3.3 LOW
V2: 2.1 LOW
CVE-2018-2762 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructu... read CVE-2018-2762
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 4.4 MEDIUM
V2: 2.1 LOW
CVE-2018-2761 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Difficult to exploit vulnerability allows unauthenticated a... read CVE-2018-2761
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 5.9 MEDIUM
V2: 4.3 MEDIUM
CVE-2018-2760 — Vulnerability in the Oracle HTTP Server component of Oracle Fusion Middleware (subcomponent: OSSL Module). Supported versions that are affected are 12.1.3 and 12.2.1.2. Difficult to exploit vulnerability allows unauthenticated attacker with network a... read CVE-2018-2760
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 5.9 MEDIUM
V2: 4.3 MEDIUM
CVE-2018-2759 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols... read CVE-2018-2759
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 4.9 MEDIUM
V2: 4.0 MEDIUM
CVE-2018-2758 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). Supported versions that are affected are 5.6.39 and prior and 5.7.21 and prior. Easily exploitable vulnerability allows low privileged attacke... read CVE-2018-2758
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 6.5 MEDIUM
V2: 4.0 MEDIUM
CVE-2018-2756 — Vulnerability in the Oracle Communications Order and Service Management component of Oracle Communications Applications (subcomponent: WebUI). Supported versions that are affected are 7.2.4.3.0, 7.3.0.1.x, 7.3.1.0.7 and 7.3.5.0.x. Easily exploitable... read CVE-2018-2756
Published: April 18, 2018; 10:29:01 PM -04:00

V3: 6.3 MEDIUM
V2: 4.9 MEDIUM

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database