NVD - Home

NVD Release of CVMAP

CVSS Version 3.1 Official Support!

New NVD CVE/CPE API and Legacy SOAP Service Retirement!

The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, misconfigurations, product names, and impact metrics.

Last 20 Scored Vulnerability IDs & Summaries CVSS Severity

CVE-2020-14651 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multip... read CVE-2020-14651
Published: July 15, 2020; 02:15:30 PM -04:00

V3.1: 5.5 MEDIUM
V2: 5.5 MEDIUM
CVE-2020-14643 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multip... read CVE-2020-14643
Published: July 15, 2020; 02:15:29 PM -04:00

V3.1: 5.5 MEDIUM
V2: 5.5 MEDIUM
CVE-2020-14604 — Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 8.0.6-8.1.0. Easily exploitable vulnerabilit... read CVE-2020-14604
Published: July 15, 2020; 02:15:25 PM -04:00

V3.1: 5.3 MEDIUM
V2: 5.0 MEDIUM
CVE-2020-14603 — Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 8.0.6-8.1.0. Easily exploitable vulnerabilit... read CVE-2020-14603
Published: July 15, 2020; 02:15:25 PM -04:00

V3.1: 5.3 MEDIUM
V2: 5.0 MEDIUM
CVE-2020-14567 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network... read CVE-2020-14567
Published: July 15, 2020; 02:15:22 PM -04:00

V3.1: 4.9 MEDIUM
V2: 4.0 MEDIUM
CVE-2020-14568 — Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to c... read CVE-2020-14568
Published: July 15, 2020; 02:15:23 PM -04:00

V3.1: 4.9 MEDIUM
V2: 4.0 MEDIUM
CVE-2020-14569 — Vulnerability in the Oracle FLEXCUBE Investor Servicing product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 12.1.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerabilit... read CVE-2020-14569
Published: July 15, 2020; 02:15:23 PM -04:00

V3.1: 8.1 HIGH
V2: 5.5 MEDIUM
CVE-2020-14570 — Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Mobile Service). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker... read CVE-2020-14570
Published: July 15, 2020; 02:15:23 PM -04:00

V3.1: 7.1 HIGH
V2: 5.8 MEDIUM
CVE-2020-14571 — Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Mobile Service). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker... read CVE-2020-14571
Published: July 15, 2020; 02:15:23 PM -04:00

V3.1: 7.2 HIGH
V2: 6.4 MEDIUM
CVE-2020-14572 — Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated... read CVE-2020-14572
Published: July 15, 2020; 02:15:23 PM -04:00

V3.1: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2020-14574 — Vulnerability in the Oracle Communications Interactive Session Recorder product of Oracle Communications Applications (component: FACE). Supported versions that are affected are 6.1-6.4. Difficult to exploit vulnerability allows high privileged attac... read CVE-2020-14574
Published: July 15, 2020; 02:15:23 PM -04:00

V3.1: 4.7 MEDIUM
V2: 3.0 LOW
CVE-2020-14544 — Vulnerability in the Oracle Transportation Management product of Oracle Supply Chain (component: Data, Domain & Function Security). The supported version that is affected is 6.4.3. Easily exploitable vulnerability allows low privileged attacker w... read CVE-2020-14544
Published: July 15, 2020; 02:15:15 PM -04:00

V3.1: 4.3 MEDIUM
V2: 4.0 MEDIUM
CVE-2020-14575 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols... read CVE-2020-14575
Published: July 15, 2020; 02:15:23 PM -04:00

V3.1: 4.9 MEDIUM
V2: 4.0 MEDIUM
CVE-2020-14576 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access vi... read CVE-2020-14576
Published: July 15, 2020; 02:15:23 PM -04:00

V3.1: 6.5 MEDIUM
V2: 4.0 MEDIUM
CVE-2020-14543 — Vulnerability in the Oracle Hospitality Reporting and Analytics product of Oracle Food and Beverage Applications (component: Installation). The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows low privileged attack... read CVE-2020-14543
Published: July 15, 2020; 02:15:15 PM -04:00

V3.1: 7.3 HIGH
V2: 4.4 MEDIUM
CVE-2020-14587 — Vulnerability in the PeopleSoft Enterprise FIN Expenses product of Oracle PeopleSoft (component: Expenses). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to... read CVE-2020-14587
Published: July 15, 2020; 02:15:24 PM -04:00

V3.1: 5.4 MEDIUM
V2: 5.5 MEDIUM
CVE-2020-14586 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m... read CVE-2020-14586
Published: July 15, 2020; 02:15:24 PM -04:00

V3.1: 4.9 MEDIUM
V2: 4.0 MEDIUM
CVE-2020-14585 — Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Mobile Service). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker... read CVE-2020-14585
Published: July 15, 2020; 02:15:24 PM -04:00

V3.1: 8.2 HIGH
V2: 4.3 MEDIUM
CVE-2020-14584 — Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: BI Publisher Security). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with... read CVE-2020-14584
Published: July 15, 2020; 02:15:24 PM -04:00

V3.1: 8.2 HIGH
V2: 4.3 MEDIUM
CVE-2020-14582 — Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: User Registration). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with netw... read CVE-2020-14582
Published: July 15, 2020; 02:15:24 PM -04:00

V3.1: 8.2 HIGH
V2: 4.3 MEDIUM

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database