Vulnerabilities (CVE)

Filtered by NVD-CWE-noinfo
Total 35781 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-0082 1 Oracle 1 Database Server 2026-06-16 5.5 MEDIUM N/A
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect integrity and availability via unknown vectors.
CVE-2012-0081 1 Oracle 1 Glassfish Server 2026-06-16 3.7 LOW N/A
Unspecified vulnerability in Oracle GlassFish Enterprise Server 3.1.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Administration.
CVE-2012-0080 1 Oracle 1 Peoplesoft Products 2026-06-16 5.5 MEDIUM N/A
Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Talent Acquisition Management.
CVE-2012-0079 1 Oracle 1 Opensso 2026-06-16 4.3 MEDIUM N/A
Unspecified vulnerability in Oracle OpenSSO 7.1 and 8.0 allows remote attackers to affect integrity via unknown vectors related to Administration.
CVE-2012-0078 1 Oracle 1 E-business Suite 2026-06-16 4.0 MEDIUM N/A
Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.2 and 12.1.3 allows remote authenticated users to affect confidentiality, related to REST Services (Menu, LOV).
CVE-2012-0077 1 Oracle 1 Fusion Middleware 2026-06-16 3.5 LOW N/A
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.2.4, 10.0.2, 10.3.3, 10.3.4, and 10.3.5 allows remote authenticated users to affect integrity, related to WLS-Console.
CVE-2012-0076 1 Oracle 1 Peoplesoft Products 2026-06-16 4.0 MEDIUM N/A
Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.0 and 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to ePerformance.
CVE-2012-0075 2 Mysql, Oracle 2 Mysql, Mysql 2026-06-16 1.7 LOW N/A
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect integrity via unknown vectors.
CVE-2012-0074 1 Oracle 1 Peoplesoft Products 2026-06-16 4.0 MEDIUM N/A
Unspecified vulnerability in the PeopleSoft Enterprise CRM component in Oracle PeopleSoft Products 8.9 allows remote authenticated users to affect integrity via unknown vectors related to Sales.
CVE-2012-0073 1 Oracle 1 E-business Suite 2026-06-16 4.3 MEDIUM N/A
Unspecified vulnerability in the Oracle Forms component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors.
CVE-2012-0072 1 Oracle 1 Database Server 2026-06-16 5.0 MEDIUM N/A
Unspecified vulnerability in the Listener component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote attackers to affect availability via unknown vectors.
CVE-2012-0071 1 Oracle 1 Fusion Middleware 2026-06-16 4.3 MEDIUM N/A
Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote attackers to affect integrity via unknown vectors related to Web, a different vulnerability than CVE-2012-0093.
CVE-2012-0063 1 Tucaneando 1 Tucan 2026-06-16 6.8 MEDIUM 8.1 HIGH
Insecure plugin update mechanism in tucan through 0.3.10 could allow remote attackers to perform man-in-the-middle attacks and execute arbitrary code ith the permissions of the user running tucan.
CVE-2012-0053 5 Apache, Debian, Opensuse and 2 more 12 Http Server, Debian Linux, Opensuse and 9 more 2026-06-16 4.3 MEDIUM N/A
protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.
CVE-2012-0031 5 Apache, Debian, Opensuse and 2 more 13 Http Server, Debian Linux, Opensuse and 10 more 2026-06-16 4.6 MEDIUM N/A
scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow local users to cause a denial of service (daemon crash during shutdown) or possibly have unspecified other impact by modifying a certain type field within a scoreboard shared memory segment, leading to an invalid call to the free function.
CVE-2012-0004 1 Microsoft 5 Windows 7, Windows Server 2003, Windows Server 2008 and 2 more 2026-06-16 9.3 HIGH N/A
Unspecified vulnerability in DirectShow in DirectX in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted media file, related to Quartz.dll, Qdvd.dll, closed captioning, and the Line21 DirectShow filter, aka "DirectShow Remote Code Execution Vulnerability."
CVE-2012-0003 1 Microsoft 5 Windows 7, Windows Server 2003, Windows Server 2008 and 2 more 2026-06-16 9.3 HIGH 8.1 HIGH
Unspecified vulnerability in winmm.dll in Windows Multimedia Library in Windows Media Player (WMP) in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows remote attackers to execute arbitrary code via a crafted MIDI file, aka "MIDI Remote Code Execution Vulnerability."
CVE-2011-5331 1 Distributed Ruby Project 1 Distributed Ruby 2026-06-16 7.5 HIGH 9.8 CRITICAL
Distributed Ruby (aka DRuby) 1.8 mishandles instance_eval.
CVE-2011-5330 1 Distributed Ruby Project 1 Distributed Ruby 2026-06-16 7.5 HIGH 9.8 CRITICAL
Distributed Ruby (aka DRuby) 1.8 mishandles the sending of syscalls.
CVE-2011-5274 1 Gplhost 1 Domain Technologie Control 2026-06-16 7.5 HIGH N/A
The drawAdminTools_PackageInstaller function in shared/inc/forms/packager.php in Domain Technologie Control (DTC) before 0.32.11 allows remote attackers to execute arbitrary commands via shell metacharacters in the dtcpkg_directory parameter in a do_install action to dtc/.