1853 matches found
eap-galleon: custom provisioning creates unsecured http-invoker
An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...
eap-galleon: custom provisioning creates unsecured http-invoker
An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...
CVE-2023-22124
Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications component: Infrastructure. Supported versions that are affected are 14.5-14.7. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2023-22117
Vulnerability in the Oracle FLEXCUBE Universal Banking product of Oracle Financial Services Applications component: Infrastructure. Supported versions that are affected are 12.3, 12.4, 14.0-14.3 and 14.5-14.7. Easily exploitable vulnerability allows low privileged attacker with network access via...
CVE-2023-22127
Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Content Access SDK, Image Export SDK, PDF Export SDK, HTML Export SDK. The supported version that is affected is 8.5.6. Easily exploitable vulnerability allows low privileged attacker with network...
CVE-2023-22126
Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware component: Content Server. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Content...
CVE-2023-22105
Vulnerability in the BI Publisher product of Oracle Analytics component: Web Server. Supported versions that are affected are 6.4.0.0.0 and 7.0.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise BI Publisher. Successful attacks requir...
CVE-2023-22109
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics component: Analytics Web Dashboards. Supported versions that are affected are 6.4.0.0.0, 7.0.0.0.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access v...
CVE-2023-22107
Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite component: UI Components. Supported versions that are affected are ECC: 8, 9 and 10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...
CVE-2023-22088
Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: User Management. Supported versions that are affected are 7.4.0 and 7.4.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP ...
Design/Logic Flaw
Vulnerability in the Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications component: Opera. The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hospitality OPERA 5...
Design/Logic Flaw
Vulnerability in the Oracle FLEXCUBE Universal Banking product of Oracle Financial Services Applications component: Infrastructure. Supported versions that are affected are 12.3, 12.4, 14.0-14.3 and 14.5-14.7. Easily exploitable vulnerability allows low privileged attacker with network access via...
Oracle Financial Services Applications Security Vulnerability
Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The product includes core banking, online banking and estate management. A security vulnerability exists in Oracle Banking Trade Finance version 14.5-14.7 of Oracle Financial Services Applications,...
Oracle Financial Services Applications Security Vulnerability
Oracle Financial Services Applications and Oracle FLEXCUBE Universal Banking are both products of Oracle Corporation, USA.Oracle Financial Services Applications is a suite of financial services Oracle Financial Services Applications is a suite of financial services software. Oracle Financial...
Oracle Financial Services Applications Security Vulnerability
Oracle Financial Services Applications and Oracle FLEXCUBE Universal Banking are both products of Oracle Corporation, USA.Oracle Financial Services Applications is a suite of financial services Oracle Financial Services Applications is a suite of financial services software. Oracle Financial...
Oracle Financial Services Applications Security Vulnerability
Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The product includes core banking, online banking and estate management. A security vulnerability exists in Oracle Banking Trade Finance version 14.5-14.7 of Oracle Financial Services Applications,...
Oracle E-Business Suite (Jul 2023 CPU)
The versions of Oracle E-Business Suite installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2023 CPU advisory. - Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: MS Excel Specific. Supported...
CVE-2023-22060
Vulnerability in the Oracle Hyperion Workspace product of Oracle Hyperion component: UI and Visualization. The supported version that is affected is 11.2.13.0.000. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Hyperion Workspace...
CVE-2023-22022
Vulnerability in the Oracle Health Sciences Sciences Data Management Workbench product of Oracle Health Sciences Applications component: Blinding Functionality. Supported versions that are affected are 3.1.0.2, 3.1.1.3 and 3.2.0.0. Easily exploitable vulnerability allows low privileged attacker...
CVE-2023-22039
Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain component: WebClient. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attacks require human...