154 matches found
CVE-2017-10273
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Deployment. Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.2.0. Difficult to exploit vulnerability allows high privileged attacker with logon ...
CVE-2017-10273
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Deployment. Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.2.0. Difficult to exploit vulnerability allows high privileged attacker with logon ...
Design/Logic Flaw
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Security Framework. Supported versions that are affected are 11.1.1.2.4, 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acce...
Design/Logic Flaw
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Deployment. Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.2.0. Difficult to exploit vulnerability allows high privileged attacker with logon ...
CVE-2018-2711
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Security Framework. Supported versions that are affected are 11.1.1.2.4, 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acce...
CVE-2018-2711
CVE-2018-2711 affects the Oracle JDeveloper component of Oracle Fusion Middleware (Security Framework). Affected versions include 11.1.1.2.4, 11.1.1.7.x, 11.1.1.9.0 and 12.1.3.0.0. An unauthenticated attacker with network access via HTTP can exploit this vulnerability to compromise JDeveloper and...
CVE-2017-10273
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Deployment. Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.2.0. Difficult to exploit vulnerability allows high privileged attacker with logon ...
CVE-2017-10273
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Deployment. Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.2.0. Difficult to exploit vulnerability allows high privileged attacker with logon ...
CVE-2017-10273
CVE-2017-10273: Oracle JDeveloper in Oracle Fusion Middleware Deployment is affected by a directory traversal vulnerability. Affected versions include 11.1.1.7.0/7.1/9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.2.0. The issue allows a high-privilege attacker with logon to compromise JDeveloper, with impac...
Oracle JDeveloper IDE Directory Traversal Vulnerability
Exploit for java platform in category web applications + Credits: John Page aka hyp3rlinx Vendor: ============= www.oracle.com Product: =========== JDeveloper IDE Oracle JDeveloper is a free integrated development environment that simplifies the development of Java-based applications addressing...
Oracle JDeveloper IDE Directory Traversal
Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/ORACLE-JDEVELOPER-DIRECTORY-TRAVERSAL.txt + ISR: apparition security Vendor: ============= www.oracle.com Product: =========== JDeveloper IDE Oracle JDeveloper is a free...
Unspecified Vulnerability in Oracle Fusion Middleware (CNVD-2018-02267)
Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platform for enterprise and cloud environments from Oracle. The platform provides middleware, software collections, etc. Oracle JDeveloper is one of the free integrated development environment IDE components. A...
Oracle Fusion Middleware Directory Traversal Vulnerability
Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platform for enterprise and cloud environments from Oracle. The platform provides middleware, software collections, etc. Oracle JDeveloper is one of the free integrated development environment IDE components. A...
Oracle JDeveloper ADF Faces Unspecified Remote Code Execution (October 2017 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by vulnerability in the Spatial Apache Groovy component of Oracle Database Server. Please see the vendor advisory for additional information. %NASLMINLEVEL 70300 C Tenable Network...
CVE-2017-3255
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: ADF Faces. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker wi...
CVE-2017-3255
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: ADF Faces. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker wi...
Design/Logic Flaw
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: ADF Faces. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker wi...
CVE-2017-3255
CVE-2017-3255 affects Oracle JDeveloper (ADF Faces within Oracle Fusion Middleware). Affected versions include 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. The vulnerability enables unauthenticated, network-accessible information disclosure over HTTP, pot...
CVE-2017-3255
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: ADF Faces. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker wi...
Oracle JDeveloper ADF Faces Unspecified Remote Information Disclosure (January 2017 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability in the Application Development Framework ADF Faces subcomponent that allows an unauthenticated, remote attacker to disclose arbitrary...