Known Vulnerabilities for Communications Cloud Native Core Unified Data Repository by Oracle
Listed below are 10 of the newest known vulnerabilities associated with "Communications Cloud Native Core Unified Data Repository" by "Oracle".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
|CVE||Shortened Description||Severity||Publish Date||Last Modified|
|CVE-2022-23308||valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.||7.5 - HIGH||2022-02-26||2022-11-02|
|CVE-2022-23219||The deprecated compatibility function clnt_create in the sunrpc module of the GNU C Library (aka glibc) through 2.34 copies i...||9.8 - CRITICAL||2022-01-14||2022-11-08|
|CVE-2022-23218||The deprecated compatibility function svcunix_create in the sunrpc module of the GNU C Library (aka glibc) through 2.34 copie...||9.8 - CRITICAL||2022-01-14||2022-11-08|
|CVE-2022-22965||A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data bindin...||9.8 - CRITICAL||2022-04-01||2023-02-09|
|CVE-2022-22963||In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possibl...||9.8 - CRITICAL||2022-04-01||2022-07-28|
|CVE-2021-29425||In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../f...||4.8 - MEDIUM||2021-04-13||2022-10-27|
|CVE-2021-28168||Eclipse Jersey 2.28 to 2.33 and Eclipse Jersey 3.0.0 to 3.0.1 contains a local information disclosure vulnerability. This is ...||5.5 - MEDIUM||2021-04-22||2022-07-29|
|CVE-2021-22118||In Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux application is vulnerable to...||7.8 - HIGH||2021-05-27||2022-10-25|
|CVE-2021-3712||ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the strin...||7.4 - HIGH||2021-08-24||2022-12-06|
|CVE-2021-3711||In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an a...||9.8 - CRITICAL||2021-08-24||2022-12-06|