Design/Logic Flaw

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.0, and 11.1.2.1 allows remote attackers to affect confidentiality via unknown vectors related to End User Self Service...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.2.0 and 11.1.2.1 allows remote attackers to affect confidentiality via unknown vectors related to Identity Console...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.0, and 11.1.2.1 allows remote attackers to affect integrity via unknown vectors related to End User Self Service...

Oracle Patches 36 Java Flaws in January 2014 CPU

All has been relatively quiet of late on the Java security front, which is in stark contrast to a year ago when Java was the scourge of the Internet. Vulnerabilities in Java were being exploited at an alarming rate in a number of targeted attacks including watering hole attacks against prominent...

CVE-2013-5901

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.2.0 and 11.1.2.1 allows remote attackers to affect confidentiality via unknown vectors related to Identity Console...

CVE-2013-5900

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.0, and 11.1.2.1 allows remote attackers to affect integrity via unknown vectors related to End User Self Service...

CVE-2013-5901

Technical details about CVE-2013-5901 (Oracle Identity Manager Identity Console vulnerabilities) are not publicly provided in the connected documents. Monitor for updates.

CVE-2013-5900

Technical details about CVE-2013-5900 are not provided in the connected documents. The materials reference Oracle Identity Manager End User Self Service vulnerabilities without specifics. Monitor for updates.

CVE-2014-0383

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.2.0 and 11.1.2.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Identity Console...

CVE-2014-0374

Unspecified vulnerability in the Oracle Portal component in Oracle Fusion Middleware 11.1.1.6 allows remote attackers to affect integrity via unknown vectors related to Page Parameters and Events...

CVE-2014-0391

CVE-2014-0391 pertains to an unspecified vulnerability in the Oracle Identity Manager component of Oracle Fusion Middleware versions 11.1.1.5, 11.1.1.7, 11.1.2.0, and 11.1.2.1, related to End User Self Service and allowing remote attackers to affect confidentiality via unknown vectors. The connec...

CVE-2014-0374

CVE-2014-0374 relates to an unspecified vulnerability in the Oracle Portal component of Oracle Fusion Middleware 11.1.1.6 . The issue is described as allowing remote attackers to affect integrity via unknown vectors involving Page Parameters and Events . The connected documents confirm the affect...

CVE-2013-5808

Unspecified vulnerability in the Oracle iPlanet Web Proxy Server component in Oracle Fusion Middleware 4.0 allows remote attackers to affect confidentiality via unknown vectors related to Administration...

CVE-2013-5879

CVE-2013-5879 concerns an unspecified vulnerability in the Oracle Outside In Technology Outside In Maintenance component within Oracle Fusion Middleware 8.4.0/8.4.1. The vulnerability could allow a denial of service or, potentially, remote code execution on server installations. The reported CVSS...

CVE-2013-5808

CVE-2013-5808 affects Oracle iPlanet Web Proxy Server 4.0 prior to 4.0.23 (Sun Java System Web Proxy Server). The vulnerability is described as unspecified and related to Administration . The Nessus/NVD records indicate a remote, network-exposed issue with low base score (CVSS v2: 2.6, Confidenti...

CVE-2013-5869

Unspecified vulnerability in the Oracle WebCenter Portal component in Oracle Fusion Middleware 11.1.1.6.0, 11.1.1.7.0, and 11.1.1.8.0 allows remote attackers to affect confidentiality via unknown vectors related to Page Service...

CVE-2013-5869

Oracle WebCenter Portal (Oracle Fusion Middleware) versions 11.1.1.6.0–11.1.1.8.0 are affected by an unspecified information-disclosure vulnerability in the Page Service subcomponent that could allow remote attackers to access confidential data. The exact vectors and root cause are not detailed i...

CVE-2013-5785

CVE-2013-5785 affects Oracle Fusion Middleware’s Oracle Reports Developer component (versions 11.1.1.6, 11.1.1.7, 11.1.2.1). The entry notes an unspecified vulnerability allowing remote attackers to impact confidentiality, integrity, and availability via unknown vectors related to Security and Au...

CVE-2013-5879

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Maintenance...

Oracle Releases January 2014 Security Advisory

Oracle has released its Critical Patch Update for January 2014 to address 144 vulnerabilities across multiple products. This update contains the following security fixes: 5 for Oracle Database Server 22 for Oracle Fusion Middleware 2 for Oracle Hyperion 4 for Oracle E-Business Suite 16 for Oracle...