Oracle secure global desktop
This hub aggregates every CVE we track for Oracle secure global desktop, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.
18
CVEs tracked
6
Critical
3
High
0
In CISA KEV
Severity distribution
MEDIUM7CRITICAL6HIGH3LOW2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Oracle secure global desktop.
- CVE-2021-2447Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Server). The supported version that is affected is 5.6. Easily exploitable vulnerability allows low pr...9.9
- CVE-2021-2446Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Client). The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauth...9.6
- CVE-2021-2248Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Server). The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauth...10.0
- CVE-2021-2221Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Client). The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauth...9.6
- CVE-2021-2177Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Gateway). The supported version that is affected is 5.6. Easily exploitable vulnerability allows unaut...10.0
- CVE-2019-17091faces/context/PartialViewContextImpl.java in Eclipse Mojarra, as used in Mojarra for Eclipse EE4J before 2.3.10 and Mojarra JavaServer Faces before 2.2.20, allows Reflected XSS because a client win...6.1
- CVE-2019-1563Padding Oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey3.7
- CVE-2019-1549Fork Protection5.3
- CVE-2019-1547ECDSA remote timing attack4.7
- CVE-2019-1552Windows builds with insecure path defaults3.3
- CVE-2019-0227A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subve...7.5
- CVE-2019-15590-byte record padding oracle5.9
- CVE-2019-3822libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow. The function creating an outgoing NTLM type-3 header (`lib/vauth/ntlm.c:Curl_auth_create_ntlm_type3_me...9.8
- CVE-2019-3823libcurl versions from 7.34.0 to before 7.64.0 are vulnerable to a heap out-of-bounds read in the code handling the end-of-response for SMTP. If the buffer passed to `smtp_endofresp()` isn't NUL ter...4.3
- CVE-2018-16890libcurl versions from 7.36.0 to before 7.64.0 is vulnerable to a heap buffer out-of-bounds read. The function handling incoming NTLM type-2 messages (`lib/vauth/ntlm.c:ntlm_decode_type2_target`) do...7.5
Product normalization is registry-driven with AI assist and human review. How it works