8222 matches found
CVE-2014-2407
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality, a different vulnerability than CVE-2014-2415, CVE-2014-2416,...
CVE-2014-2400
Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 2.2.2 allows remote attackers to affect integrity via unknown vectors related to Oracle Endeca Information Discovery Formerly Latitude, a different vulnerability than CVE-2014-2399...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 2.2.2 allows remote attackers to affect integrity via unknown vectors related to Oracle Endeca Information Discovery Formerly Latitude, a different vulnerability than CVE-2014-2400...
Buffer overflow
Unspecified vulnerability in the Oracle OpenSSO component in Oracle Fusion Middleware 8.0 Update 2 Patch 5 allows remote authenticated users to affect integrity via unknown vectors related to Admin Console...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 2.2.2 allows remote attackers to affect integrity via unknown vectors related to Oracle Endeca Information Discovery Formerly Latitude, a different vulnerability than CVE-2014-2399...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality, a different vulnerability than CVE-2014-2415, CVE-2014-2416,...
CVE-2014-2400
Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 2.2.2 allows remote attackers to affect integrity via unknown vectors related to Oracle Endeca Information Discovery Formerly Latitude, a different vulnerability than CVE-2014-2399...
CVE-2014-2399
CVE-2014-2399 concerns Endeca Latitude (Endeca Latitude 2.2.2) Cross‑Site Request Forgery. The CSRF stems from vulnerable admin/config URLs without anti‑CSRF controls, enabling an attacker to trigger administrative actions (e.g., change settings or disable the instance) via forged requests. No fi...
CVE-2014-2407
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality, a different vulnerability than CVE-2014-2415, CVE-2014-2416,...
CVE-2014-2404
Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 10.1.4.3, 11.1.1.3.0, 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0, 11.1.2.1.0, and 11.1.2.2.0 allows remote authenticated users to affect confidentiality via unknown vectors related to WebGate...
CVE-2014-0465
Technical details about CVE-2014-0465 are not publicly provided in the supplied documents; the connected records do not disclose affected product versions, root cause, or remediation. Monitor for updates.
CVE-2014-0465
Unspecified vulnerability in the Oracle OpenSSO component in Oracle Fusion Middleware 8.0 Update 2 Patch 5 allows remote authenticated users to affect integrity via unknown vectors related to Admin Console...
CVE-2014-2399
Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 2.2.2 allows remote attackers to affect integrity via unknown vectors related to Oracle Endeca Information Discovery Formerly Latitude, a different vulnerability than CVE-2014-2400...
CVE-2014-2404
CVE-2014-2404 affects Oracle Fusion Middleware’s Oracle Access Manager component, impacting multiple versions (10.1.4.3, 11.1.1.3.0, 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0, 11.1.2.1.0, 11.1.2.2.0). The vulnerability allows remote authenticated users to affect confidentiality via unknown vectors relat...
CVE-2014-2400
CVE-2014-2400 is a Cross‑Site Scripting vulnerability in Endeca Latitude 2.2.2 (Endeca Latitude / Oracle Fusion Middleware context). The advisories describe input handling flaws where invalid URL parameters (config/admin) are reflected without proper escaping, enabling arbitrary JavaScript execut...
CVE-2014-0450
Unspecified vulnerability in the Oracle WebCenter Portal component in Oracle Fusion Middleware 11.1.1.7 and 11.1.1.8 allows remote attackers to affect confidentiality via unknown vectors related to People Connection...
CVE-2014-0413
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect integrity via vectors related to HTTP Request Handling, a different vulnerability than CVE-2014-0426...
CVE-2014-0414
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality via vectors related to HTTP Request Handling...
CVE-2014-0426
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect integrity via vectors related to HTTP Request Handling, a different vulnerability than CVE-2014-0413...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect integrity via vectors related to HTTP Request Handling, a different vulnerability than CVE-2014-0426...