Oracle exadata
This hub aggregates every CVE we track for Oracle exadata, a product in the databases space. Use it to gauge the current risk picture and drill into individual advisories.
82
CVEs tracked
0
Critical
28
High
2
In CISA KEV
Severity distribution
MEDIUM53HIGH28LOW1
Monthly trend
3
2
3
4
4
4
16
3
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Oracle exadata.
- CVE-2024-8176Libexpat: expat: improper restriction of xml entity expansion depth in libexpat7.5
- CVE-2025-24855numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, ...7.8
- CVE-2024-55549xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes.7.8
- CVE-2024-45775Grub2: commands/extcmd: missing check for failed allocation5.2
- CVE-2025-21703netem: Update sch->q.qlen before qdisc_tree_reduce_backlog()7.8
- CVE-2024-31068Improper Finite State Machines (FSMs) in Hardware Logic for some Intel(R) Processors may allow privileged user to potentially enable denial of service via local access.5.3
- CVE-2024-36293Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.6.5
- CVE-2024-39355Improper handling of physical or environmental conditions in some Intel(R) Processors may allow an authenticated user to enable denial of service via local access.6.5
- CVE-2024-28047Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.5.3
- CVE-2024-31157Improper initialization in UEFI firmware OutOfBandXML module in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.5.3
- CVE-2024-39279Insufficient granularity of access control in UEFI firmware in some Intel(R) processors may allow a authenticated user to potentially enable denial of service via local access.6.5
- CVE-2024-28127Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.7.5
- CVE-2024-29214Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.7.5
- CVE-2024-24582Improper input validation in XmlCli feature for UEFI firmware for some Intel(R) processors may allow privileged user to potentially enable escalation of privilege via local access.7.5
- CVE-2023-34440Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.7.5
Product normalization is registry-driven with AI assist and human review. How it works