155 matches found
Oracle Fusion Middleware 安全漏洞
Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle Corporation USA. The platform provides middleware, software collections, and other capabilities.An information disclosure vulnerability exists in the Dashboard component of Oracle...
PT-2022-14988 · Oracle · Oracle Enterprise Data Quality
Name of the Vulnerable Software and Affected Versions: Oracle Enterprise Data Quality versions 12.2.1.3.0 through 12.2.1.4.0 Description: The issue allows an unauthenticated attacker with network access via HTTP to compromise Oracle Enterprise Data Quality. Successful attacks require human...
CVE-2022-21615
Vulnerability in the Oracle Enterprise Data Quality product of Oracle Fusion Middleware component: Dashboard. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2022-21612
CVE-2022-21612 affects Oracle Fusion Middleware’s Oracle Enterprise Data Quality (Dashboard) with affected versions 12.2.1.3.0 and 12.2.1.4.0. A low-privilege attacker can exploit over HTTP to cause unauthorized creation/deletion/modification of data or unauthorized data access. The available con...
CVE-2022-21614
Vulnerability in the Oracle Enterprise Data Quality product of Oracle Fusion Middleware component: Dashboard. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2022-21613
CVE-2022-21613 affects Oracle Fusion Middleware’s Oracle Enterprise Data Quality component (Dashboard). Affected versions are 12.2.1.3.0 and 12.2.1.4.0. The vulnerability allows unauthenticated attackers with network access via HTTP to compromise Oracle Enterprise Data Quality; successful exploit...
CVE-2022-21615
Vulnerability in the Oracle Enterprise Data Quality product of Oracle Fusion Middleware component: Dashboard. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2022-21615
CVE-2022-21615 affects Oracle Fusion Middleware’s Oracle Enterprise Data Quality product, specifically the Dashboard component. Affected are versions 12.2.1.3.0 and 12.2.1.4.0. The vulnerability allows an unauthenticated, network-accessible attacker to compromise Oracle Enterprise Data Quality vi...
CVE-2022-21614
CVE-2022-21614 affects Oracle Fusion Middleware’s Oracle Enterprise Data Quality (Dashboard) with affected versions 12.2.1.3.0 and 12.2.1.4.0. The vulnerability allows an unauthenticated, network-access attacker (HTTP) to access or compromise data, with CVSS v3.1 base score 7.5 (Confidentiality i...
PT-2022-14985 · Oracle · Oracle Enterprise Data Quality
Name of the Vulnerable Software and Affected Versions: Oracle Enterprise Data Quality versions 12.2.1.3.0 through 12.2.1.4.0 Description: The issue allows a low-privileged attacker with network access via HTTP to compromise Oracle Enterprise Data Quality, resulting in unauthorized creation,...
Oracle Fusion Middleware 安全漏洞
Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle USA. The platform provides middleware, software collections, and other capabilities. A security vulnerability exists in Oracle Fusion Middleware versions...
PT-2022-14987 · Oracle · Oracle Enterprise Data Quality
Name of the Vulnerable Software and Affected Versions: Oracle Enterprise Data Quality versions 12.2.1.3.0 through 12.2.1.4.0 Description: The issue allows an unauthenticated attacker with network access via HTTP to compromise Oracle Enterprise Data Quality, resulting in unauthorized access to...
How GRC protects the value of organizations — A simple guide to data quality and integrity
Contemporary organizations understand the importance of data and its impact on improving interactions with customers, offering quality products or services, and building loyalty. Data is fundamental to business success. It allows companies to make the right decisions at the right time and deliver...
IBM Cognos Analytics 授权问题漏洞
IBM Cognos Analytics is a suite of business intelligence software from IBM in the United States. The software includes reports, dashboards, and scorecards, and can assist companies in adjusting their decisions by analyzing such things as key factors and key people. A command execution vulnerabili...
Joker’s Stash Carding Market to Call it Quits
Jokers Stash, by some accounts the largest underground shop for selling stolen credit card and identity data, says its closing up shop effective mid-February 2021. The announcement came on the heels of a turbulent year for the major cybercrime store, and just weeks after U.S. and European...
Joker's Stash, The Largest Carding Marketplace, Announces Shutdown
Joker's Stash, the largest dark web marketplace notorious for selling compromised payment card data, has announced plans to shut down its operations on February 15, 2021. In a message board post on a Russian-language underground cybercrime forum, the operator of the site — who goes by the name...
Security Bulletin: A vulnerability in Apache Solr (lucene) affects IBM InfoSphere Information Server
Summary A vulnerability in Apache Solr lucene was addressed by IBM InfoSphere Information Server. Vulnerability Details CVEID: CVE-2017-3164 DESCRIPTION: Apache Solr is vulnerable to server-side request forgery, caused by not having corresponding allowlist mechanism in the shards parameter. By...
OSSEM - A Tool To Assess Data Quality
A tool to assess data quality, built on top of the awesome OSSEM project. Mission Answer the question: I want to start hunting ATT&CK techniques, what log sources and events are more suitable? Create transparency on the strengths and weaknesses of your log sources Provide an easy way to evaluate...
Security Bulletin: A vulnerability in Apache Solr affects IBM InfoSphere Information Server
Summary A vulnerability in Apache Solr was addressed by IBM InfoSphere Information Server. Vulnerability Details CVE-ID: CVE-2019-0192 Description: Apache Solr could allow a remote attacker to execute arbitrary code on the system, caused by a deserialization of untrusted data flaw in...
IBM InfoSphere Data Quality Exception Console and IBM InfoSphere Information Server on Cloud Cross-Site Scripting Vulnerability
IBM InfoSphere Information Server on Cloud and IBM InfoSphere Information Server are both products of IBM Corporation, U.S.A. IBM InfoSphere Information Server on Cloud is a set of cloud-based data consolidation IBM InfoSphere Information Server is a data integration platform. IBM InfoSphere...