Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 31 - 40 of 121935 in total

Oracle Database: Critical Patch Update - January 2018 (CVE-2018-2680) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2 and 12.2.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java VM. Successful attacks require human interaction from a person other t...

Java CPU January 2018 Java SE, Java SE Embedded vulnerability (CVE-2018-2641) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java...

Oracle Database: Critical Patch Update - January 2018 (CVE-2018-2575) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.2.0.1. Difficult to exploit vulnerability allows high privileged attacker having Local Logon privilege with network access via multiple protocols to compromise Core RDBMS. Successful attacks require human interact...

Oracle Database: Critical Patch Update - January 2018 (CVE-2017-10282) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows high privileged attacker having Create Session, Execute Catalog Role privilege with network access via Oracle Net to compromise Core RDBMS. While the vulnerability is...

Java CPU January 2018 Java SE, Java SE Embedded, JRockit vulnerability (CVE-2018-2579) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple pro...

Java CPU January 2018 Java SE vulnerability (CVE-2018-2581) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a p...

Java CPU January 2018 Java SE, Java SE Embedded, JRockit vulnerability (CVE-2018-2588) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: LDAP). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols t...

Java CPU January 2018 Java SE, Java SE Embedded, JRockit vulnerability (CVE-2018-2599) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocol...

Red Hat: CVE-2018-2582: Important: java-1.8.0-openjdk security update (RHSA-2018:0095) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2018:0095:

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

<...

Red Hat: CVE-2018-2579: Important: java-1.8.0-openjdk security update (RHSA-2018:0095) Vulnerability

  • Severity: 4
  • Published: January 16, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2018:0095:

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

<...