EUVD-2026-24323

Vulnerability in the Oracle User Management product of Oracle E-Business Suite component: Workflow and Business Events. Supported versions that are affected are 12.2.7-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle User...

CVE-2026-22014

Vulnerability in the Oracle User Management product of Oracle E-Business Suite component: Workflow and Business Events. Supported versions that are affected are 12.2.7-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle User...

Oracle User Management 安全漏洞

Oracle User Management is a user management system developed by Oracle, a company in the United States. There are security vulnerabilities in versions 12.2.7 to 12.2.15 of Oracle User Management. These vulnerabilities stem from issues with the Workflow and Business Events component. They may allo...

Security Bulletin: Two security vulnerabilities found and fixed in WebSphere Business Events V7.0, V7.0.1 and 7.0.1.1 in the DesignData Tooling (CVE-2012-2190, CVE-2012-2191)

Abstract A vulnerability in relation to Session ID Lengths and SSL/TLS Server has been discovered that impacts GSKit used with the Webshpere Business Events 7.0 product. Content VULNERABILITY DETAILS CVE IDs: CVE-2012-2191 and CVE-2012-2190 DESCRIPTION An error in the Global secure Toolkit GSKIT,...

Security Bulletin: Multiple vulnerabilities in IBM® SDK, Java™ Technology Edition affect IBM Operational Decision Manager, WebSphere ILOG JRules and WebSphere Business Events:

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6,7 and 8 that is used by IBM Operational Decision Manager ODM, IBM ILOG JRules and IBM WebSphere Business Events WBE. These issues were disclosed as part of the IBM Java SDK updates in January 2016 and...

Security Bulletin: Multiple vulnerabilities in IBM® SDK, Java™ Technology Edition affect IBM Operational Decision Manager, WebSphere ILOG JRules and WebSphere Business Events:

Summary There are multiple vulnerabilities in IBM® SDK, Java™ Technology Edition, Version 6 and 7 that is used by IBM Operational Decision Manager ODM, IBM ILOG JRules and IBM WebSphere Business Events WBE. These issues were disclosed as part of the IBM Java SDK updates for October 2015...

Security Bulletin: IBM Operational Decision Manager, WebSphere ILOG JRules and WebSphere Business Events: Multiple security vulnerabilities in IBM JRE (CVE-2014-4244,CVE-2014-4263)

Summary This Security Bulletin addresses the security vulnerabilities that have shipped with the IBM Java Runtime Environment JRE included in IBM Operational Decision Manager ODM, IBM ILOG JRules and IBM WebSphere Business Events WBE. For those products, this Security Bulletin provides the fixes ...

Security Bulletin: IBM Operational Decision Manager, WebSphere ILOG JRules and WebSphere Business Events: CVE-2014-0050

Summary This Security Bulletin address the security vulnerability CVE-2014-0050 in IBM Operational Decision Manager formerly known as WebSphere ILOG JRules and WebSphere Business Events. Vulnerability Details CVE ID: CVE-2014-0050 DESCRIPTION: IBM Operational Decision Management uses the library...

Code injection

Unspecified vulnerability in the wberuntimeear application in the test servlet in IBM WebSphere Business Events 6.1 and 6.2 allows remote attackers to execute arbitrary code via unknown vectors...

CVE-2009-2741

Unspecified vulnerability in the wberuntimeear application in the test servlet in IBM WebSphere Business Events 6.1 and 6.2 allows remote attackers to execute arbitrary code via unknown vectors...

CVE-2009-2741

Unspecified vulnerability in the wberuntimeear application in the test servlet in IBM WebSphere Business Events 6.1 and 6.2 allows remote attackers to execute arbitrary code via unknown vectors...

CVE-2009-2741

The CVE-2009-2741 entry concerns IBM WebSphere Business Events 6.1 and 6.2 with an unspecified vulnerability in the wberuntimeear application’s test servlet that allows remote code execution via unknown vectors. The public records do not disclose the exact vulnerable component, root cause, exploi...