Security Bulletin: IBM MQ Appliance is vulnerable to HTTP header injection (CVE-2022-34165)

Summary IBM MQ Appliance has resolved an HTTP header injection vulnerability. Vulnerability Details CVEID:CVE-2022-34165 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.9 are vulnerable to HTTP header...

Security Bulletin: IBM MQ Appliance is vulnerable to identity spoofing (CVE-2022-22476)

Summary IBM MQ Appliance has resolved an identity spoofing vulnerability. Vulnerability Details CVEID:CVE-2022-22476 DESCRIPTION: IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are vulnerable to identity spoofing by an authenticated user using a specially...

CVE-2016-3431

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3420...

CVE-2016-3431

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3420...

PT-2016-5454 · Oracle · Oracle Agile Plm

Name of the Vulnerable Software and Affected Versions: Oracle Agile PLM versions 9.3.1.1 through 9.3.3 Description: The issue affects confidentiality and integrity, and it can be exploited by remote authenticated users via vectors related to Security. Recommendations: For versions 9.3.1.1 through...

PT-2016-5445 · Oracle · Oracle Agile Plm

Name of the Vulnerable Software and Affected Versions: Oracle Agile PLM versions 9.3.1.1 through 9.3.3 Description: The issue affects confidentiality and integrity, and it can be exploited by remote authenticated users via vectors related to Security. Recommendations: For Oracle Agile PLM version...

CVE-2015-4924

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect integrity via vectors related to Security...

Security feature bypass

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect integrity via vectors related to Security...

CVE-2013-0370

Technical details for CVE-2013-0370 are not publicly provided in the supplied documents. The description remains generic (unspecified vulnerability in Oracle Agile PLM Framework). Monitor Oracle CPU advisories and CVE records for updates.

Design/Logic Flaw

Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.1.1 allows remote authenticated users to affect confidentiality, related to ROLESPRV...

CVE-2012-3161

CVE-2012-3161 affects the Oracle Agile PLM Framework component within Oracle Supply Chain Products Suite 9.3.1.1. Description in the primary record states an unspecified vulnerability that could allow remote attackers to affect integrity via unknown vectors related to the Web Client (CS). Connect...