140 matches found
Information Disclosure
Java SE is vulnerable to information disclosure. A remote unauthenticated attacker is able to gain access to confidential information through unauthorized read access via the Deployment component...
The vulnerability of the WLS component – the deployment server of Oracle WebLogic Server – allows a perpetrator to modify protected data.
The vulnerability of the WLS component – the deployment of Oracle WebLogic Server applications – is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to remotely gain access to modify, add, or delete protected data through HTTP requests...
Oracle Java SE DoS Vulnerability (cpujan2019) - Windows
Oracle Java SE is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Java SE DoS Vulnerability (cpujan2019) - Linux
Oracle Java SE is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
KLA11403 Multiple vulnerabilities in Oracle Java SE
Multiple vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A divide by zero vulnerability in libjpeg ImageIO component can be exploited remotely ...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum Scale (CVE-2015-4843, CVE-2015-4805, CVE-2015-4810, CVE-2015-4806, CVE-2015-4871, CVE-2015-4902)
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8 that is used by the IBM Spectrum Scale GUI. These issues were disclosed as part of the IBM Java SDK updates for October 2015. Vulnerability Details CVEID: CVE-2015-4843 DESCRIPTION: An unspecified...
Unspecified Vulnerability in Oracle Java SE (CNVD-2018-13570)
Java SE is the Java Platform Standard Edition, for the development and deployment of desktop, server and embedded devices and real-time environment of Java applications. An unspecified vulnerability exists in the Deployment component of Oracle Java SE 8u172, 10.0.1. An attacker could exploit this...
Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Integrated Information Core (Java Technology Edition CPU July 2016 - Includes Oracle July 2016 CPU + CVE-2016-3485)
Summary IBM WebSphere Application Server is shipped as a component of IBM Integrated Information Core. Oracle released the July 2016 critical patch updates which contain multiple fixes for security vulnerabilities in the IBM Java Development Kit that is included with IBM WebSphere Application...
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Tivoli Monitoring clients (CVE-2016-0363, CVE-2016-0376 plus additional CVEs.)
Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition that is used by IBM Tivoli Monitoring. These issues were disclosed as part of the IBM Java SDK updates in April 2016.. Vulnerability Details CVEID: CVE-2016-3443 DESCRIPTION: An unspecified vulnerabili...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 used by Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections. These issues were disclosed as part of the IBM...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect eDiscovery Analyzer
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Java™ Version 6 and Java™ 7 Vulnerability Details CVEID: CVE-2016-3610 DESCRIPTION: An unspecified vulnerability related to the Libraries component has high confidentiality impact, high integrity impact, and high...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Security Guardium
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Versions 6 and 7 that are used by IBM Security Guardium versions 9x and 10 respectively. These issues were disclosed as part of the IBM Java SDK updates for October 2015. Vulnerability Details CVEID: CVE-2015-4868...
Security Bulletin: Multiple vulnerabilities in IBM Java SD affect Guardium Data Redaction
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition version 6 that is used by Guardium Data Redaction. These issues were disclosed as part of the IBM Java SDK updates for October 2015. Vulnerability Details CVEID: CVE-2015-4844 DESCRIPTION: An unspecified vulnerability...
Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition
Summary Java SE issues disclosed in the Oracle July 2016 Critical Patch Update Vulnerability Details CVE IDs: CVE-2016-3610 CVE-2016-3598 CVE-2016-3606 CVE-2016-3587 CVE-2016-3511 CVE-2016-3550 CVE-2016-3485 DESCRIPTION: This bulletin covers all applicable Java SE CVEs published by Oracle as part...
Security Bulletin: CICS Transaction Gateway for Multiplatforms
Summary Multiple security vulnerabilities exist in the JREs shipped with CICS Transaction Gateway CICS TG for client applications. CICS TG itself is not vulnerable to all these risks but client side applications using the CICS TG supplied JREs might be. Vulnerability Details CVEID: CVE-2016-3443...
Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition
Summary Java SE issues disclosed in the Oracle October 2014 Critical Patch Update, plus the POODLE SSLv3 vulnerability and one additional vulnerability Vulnerability Details CVE IDs: CVE-2014-6513 CVE-2014-6456 CVE-2014-6503 CVE-2014-6532 CVE-2014-4288 CVE-2014-6493 CVE-2014-6492 CVE-2014-6458...
Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition
Summary Java SE issues disclosed in the Oracle July 2014 Critical Patch Update, plus 2 additional vulnerabilities Vulnerability Details CVE IDs: CVE-2014-3086 CVE-2014-4227 CVE-2014-4262 CVE-2014-4219 CVE-2014-4209 CVE-2014-4220 CVE-2014-4268 CVE-2014-4218 CVE-2014-4252 CVE-2014-4266 CVE-2014-426...
Security Bulletin: Multiple vulnerabilities in current releases of the IBM® WebSphere Real Time
Summary Java SE issues disclosed in the Oracle July 2014 Critical Patch Update, plus 2 additional vulnerabilities Vulnerability Details CVE IDs: CVE-2014-3086 CVE-2014-4227 CVE-2014-4262 CVE-2014-4219 CVE-2014-4209 CVE-2014-4220 CVE-2014-4268 CVE-2014-4218 CVE-2014-4252 CVE-2014-4266 CVE-2014-426...
Oracle Siebel CRM Siebel Engineering - Unspecified Vulnerability in Installer and Deployment Component
Oracle Siebel CRM is a set of customer relationship management solutions from Oracle USA, which includes modules for sales management, marketing management, customer service system, call center, etc. Siebel Engineering - Installer and Deployment is one of the Siebel Engineering Installer and...
CVE-2017-10273
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Deployment. Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.2.0. Difficult to exploit vulnerability allows high privileged attacker with logon ...