Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.1

    MEDIUM
    CVE-2024-44337

    The package `github.com/gomarkdown/markdown` is a Go library for parsing Markdown text and rendering as HTML. Prior to pseudoversion `v0.0.0-20240729232818-a2a9c4f`, which corresponds with commit `a2a9c4f76ef5a5c32108e36f7c47f8d310322252`, there was a log... Read more

    Affected Products : markdown
    • Published: Oct. 15, 2024
    • Modified: Nov. 14, 2024

  • 5.4

    MEDIUM
    CVE-2024-21286

    Vulnerability in the PeopleSoft Enterprise ELM Enterprise Learning Management product of Oracle PeopleSoft (component: Enterprise Learning Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged... Read more

    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 7.1

    HIGH
    CVE-2024-21285

    Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services Applications (component: Reports). The supported version that is affected is 14.5.0.12.0. Difficult to exploit vulnerability allows low privileged attacker wit... Read more

    Affected Products : banking_liquidity_management
    • Published: Oct. 15, 2024
    • Modified: Oct. 18, 2024

  • 7.1

    HIGH
    CVE-2024-21284

    Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services Applications (component: Reports). The supported version that is affected is 14.5.0.12.0. Difficult to exploit vulnerability allows low privileged attacker wit... Read more

    Affected Products : banking_liquidity_management
    • Published: Oct. 15, 2024
    • Modified: Oct. 18, 2024

  • 8.1

    HIGH
    CVE-2024-21283

    Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core product of Oracle PeopleSoft (component: Global Payroll for Core). Supported versions that are affected are 9.2.48-9.2.50. Easily exploitable vulnerability allows low privileged attacker ... Read more

    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21282

    Vulnerability in the Oracle Financials product of Oracle E-Business Suite (component: Common Components). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTT... Read more

    Affected Products : e-business_suite financials
    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 5.3

    MEDIUM
    CVE-2024-21281

    Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services Applications (component: Infrastructure). The supported version that is affected is 14.7.0.6.0. Difficult to exploit vulnerability allows high privileged attac... Read more

    Affected Products : banking_liquidity_management
    • Published: Oct. 15, 2024
    • Modified: Feb. 10, 2025

  • 8.1

    HIGH
    CVE-2024-21280

    Vulnerability in the Oracle Service Contracts product of Oracle E-Business Suite (component: Authoring). Supported versions that are affected are 12.2.5-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP... Read more

    Affected Products : service_contracts
    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21279

    Vulnerability in the Oracle Sourcing product of Oracle E-Business Suite (component: Auctions). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compro... Read more

    Affected Products : e-business_suite sourcing
    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21278

    Vulnerability in the Oracle Contract Lifecycle Management for Public Sector product of Oracle E-Business Suite (component: Award Processes). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged a... Read more

    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21277

    Vulnerability in the Oracle MES for Process Manufacturing product of Oracle E-Business Suite (component: Device Integration). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with ne... Read more

    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21276

    Vulnerability in the Oracle Work in Process product of Oracle E-Business Suite (component: Messages). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to... Read more

    Affected Products : e-business_suite work_in_process
    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21275

    Vulnerability in the Oracle Quoting product of Oracle E-Business Suite (component: User Interface). Supported versions that are affected are 12.2.7-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to c... Read more

    Affected Products : e-business_suite quoting
    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 7.5

    HIGH
    CVE-2024-21274

    Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces... Read more

    Affected Products : weblogic_server
    • Published: Oct. 15, 2024
    • Modified: Oct. 18, 2024

  • 6.0

    MEDIUM
    CVE-2024-21273

    Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 7.0.22 and prior to 7.1.2. Easily exploitable vulnerability allows high privileged attacker with logon to the... Read more

    Affected Products : vm_virtualbox
    • Published: Oct. 15, 2024
    • Modified: Oct. 18, 2024

  • 7.5

    HIGH
    CVE-2024-21272

    Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). Supported versions that are affected are 9.0.0 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple prot... Read more

    Affected Products : mysql mysql_connector\/python
    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21271

    Vulnerability in the Oracle Field Service product of Oracle E-Business Suite (component: Field Service Engineer Portal). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network... Read more

    Affected Products : e-business_suite field_service
    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21270

    Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite (component: Tasks). Supported versions that are affected are 12.2.6-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access v... Read more

    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21269

    Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component: Compensation Plan). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network ac... Read more

    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024

  • 8.1

    HIGH
    CVE-2024-21268

    Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: Diagnostics). Supported versions that are affected are 12.2.11-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access vi... Read more

    • Published: Oct. 15, 2024
    • Modified: Oct. 21, 2024
Showing 20 of 294837 Results