318 matches found
Aruba ClearPass Policy Manager tipsSimulationUpload command execution
Added: 08/13/2020 CVE: CVE-2020-7115 Background Aruba ClearPass is a network access control solution. Problem A vulnerability in the tipsSimulationUpload.action resource allows remote attackers to execute arbitrary commands by uploading a shared object library in the uploadClientCertFile paramete...
Aruba ClearPass Policy Manager tipsSimulationUpload command execution
Added: 08/13/2020 CVE: CVE-2020-7115 Background Aruba ClearPass is a network access control solution. Problem A vulnerability in the tipsSimulationUpload.action resource allows remote attackers to execute arbitrary commands by uploading a shared object library in the uploadClientCertFile paramete...
The vulnerability of the Logging component of the Oracle Application Object Library allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Logging component of the Oracle Application Object Library relates to the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using the HTTP protocol...
CVE-2020-14635
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: Logging. Supported versions that are affected are 12.2.5-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application Obje...
CVE-2020-14635
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: Logging. Supported versions that are affected are 12.2.5-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application Obje...
CVE-2020-14554
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2020-14554
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2020-14554
CVE-2020-14554 affects Oracle E-Business Suite Oracle Application Object Library (AOL) Diagnostics. Affected: AOL in EBS versions 12.1.3 and 12.2.3–12.2.8. Vulnerability allows unauthenticated, network-accessed HTTP exploitation with user interaction required, potentially enabling unauthorized up...
Unspecified Vulnerability in Oracle E-Business Suite Application Object Library (CNVD-2020-43700)
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. Application Object Library AOL,...
Unspecified Vulnerability in Oracle E-Business Suite Application Object Library (CNVD-2020-43701)
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. Application Object Library AOL,...
Oracle E-Business Suite Multiple Vulnerabilities (Oct 2019 CPU)
The version of Oracle E-Business installed on the remote host is missing the October 2019 Oracle Critical Patch Update CPU. It is, as noted in the October 2019 Critical Patch Update advisory, affected by flaws in the following components : - Oracle Advanced Outbound Telephony - Oracle Application...
CVE-2019-3027
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: Login Help. Supported versions that are affected are 12.2.5-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application...
CVE-2019-3027
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: Login Help. Supported versions that are affected are 12.2.5-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application...
Design/Logic Flaw
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: Login Help. Supported versions that are affected are 12.2.5-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application...
CVE-2019-3027
The CVE-2019-3027 entry concerns Oracle E-Business Suite’s Oracle Application Object Library (AOL), Login Help component. Affected versions are 12.2.5–12.2.9. The vulnerability is exploitable by an unauthenticated attacker over HTTP with network access, potentially enabling partial denial of serv...
Unspecified Vulnerability in Oracle E-Business Suite Application Object Library
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. Application Object Library AOL,...
CVE-2019-2761
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Attachments / File Upload. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.8. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP...
CVE-2019-2761
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Attachments / File Upload. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.8. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP...
Oracle E-Business Suite Component Access Control Error Vulnerability (CNVD-2019-28433)
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. Application Object Library AOL,...
The vulnerability of the Diagnostics sub-component of the Oracle Application Object Library in the Oracle E-Business Suite system allows a perpetrator to gain access to modify, add, or delete data.
The vulnerability of the Diagnostics sub-component of the Oracle Application Object Library in the Oracle E-Business Suite automation system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to modify, add, or...