cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-21405,https://securityvulnerability.io/vulnerability/CVE-2022-21405,Vulnerability in OSS Support Tools by Oracle,"A significant vulnerability exists within the OSS Support Tools component of Oracle Support Tools, specifically impacting version 18.3. This flaw allows an attacker with high privileges who can log in to the infrastructure where OSS Support Tools operates to potentially compromise its functionality. The successful exploitation of this vulnerability requires interaction from a separate user, but poses risks that extend beyond the OSS Support Tools itself, affecting interconnected systems. As a result, unauthorized access to critical data or potentially total access to all data managed by OSS Support Tools could occur.",Oracle,Oss Support Tools,5.5,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-04-19T20:36:42.000Z,0
CVE-2021-2303,https://securityvulnerability.io/vulnerability/CVE-2021-2303,Vulnerability in OSS Support Tools by Oracle,"A vulnerability in the OSS Support Tools product of Oracle allows an attacker with high privileges and network access via HTTP to compromise the system. If exploited, this vulnerability can lead to unauthorized access to sensitive data and complete control over all OSS Support Tools data. This poses significant risks to data confidentiality and integrity.",Oracle,Oss Support Tools,4.9,MEDIUM,0.016820000484585762,false,,false,false,false,,,false,false,,2021-04-22T21:54:01.000Z,0
CVE-2018-2616,https://securityvulnerability.io/vulnerability/CVE-2018-2616,,"Vulnerability in the OSS Support Tools component of Oracle Support Tools (subcomponent: Diagnostic Assistant). The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise OSS Support Tools. Successful attacks of this vulnerability can result in takeover of OSS Support Tools. CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",Oracle,Oss Support Tools,8.8,HIGH,0.22879000008106232,false,,false,false,false,,,false,false,,2018-01-18T02:00:00.000Z,0
CVE-2018-2615,https://securityvulnerability.io/vulnerability/CVE-2018-2615,,"Vulnerability in the OSS Support Tools component of Oracle Support Tools (subcomponent: Diagnostic Assistant). The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise OSS Support Tools. Successful attacks of this vulnerability can result in takeover of OSS Support Tools. CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",Oracle,Oss Support Tools,8.8,HIGH,0.22879000008106232,false,,false,false,false,,,false,false,,2018-01-18T02:00:00.000Z,0
CVE-2018-2617,https://securityvulnerability.io/vulnerability/CVE-2018-2617,,Vulnerability in the OSS Support Tools component of Oracle Support Tools (subcomponent: Diagnostic Assistant). The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise OSS Support Tools. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all OSS Support Tools accessible data. CVSS 3.0 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).,Oracle,Oss Support Tools,7.5,HIGH,0.00279000005684793,false,,false,false,false,,,false,false,,2018-01-18T02:00:00.000Z,0