Oracle communications session border controller
This hub aggregates every CVE we track for Oracle communications session border controller, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
23
CVEs tracked
2
Critical
9
High
0
In CISA KEV
Severity distribution
MEDIUM10HIGH9LOW2CRITICAL2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Oracle communications session border controller.
- CVE-2021-23017A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process c...7.7
- CVE-2020-1971EDIPARTYNAME NULL pointer dereference5.9
- CVE-2020-14580Vulnerability in the Oracle Communications Session Border Controller product of Oracle Communications Applications (component: System Admin). Supported versions that are affected are 8.1.0, 8.2.0 a...8.2
- CVE-2020-8203Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.7.4
- CVE-2020-10722A vulnerability was found in DPDK versions 18.05 and above. A missing check for an integer overflow in vhost_user_set_log_base() could result in a smaller memory map than requested, possibly allowi...5.1
- CVE-2020-10723A memory corruption issue was found in DPDK versions 17.05 and above. This flaw is caused by an integer truncation on the index of a payload. Under certain circumstances, the index (a UInt) is copi...5.1
- CVE-2020-10724A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of...5.1
- CVE-2019-5482Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.9.8
- CVE-2019-1563Padding Oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey3.7
- CVE-2019-1549Fork Protection5.3
- CVE-2019-1547ECDSA remote timing attack4.7
- CVE-2019-9513Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service7.5
- CVE-2019-1552Windows builds with insecure path defaults3.3
- CVE-2019-11478SACK can cause extensive memory use via fragmented resend queue5.3
- CVE-2019-11477Integer overflow in TCP_SKB_CB(skb)->tcp_gso_segs7.5
Product normalization is registry-driven with AI assist and human review. How it works