Lucene search
K

47 matches found

NVD
NVD
added 2020/01/15 5:15 p.m.17 views

CVE-2020-2592

Vulnerability in the Oracle AutoVue product of Oracle Supply Chain component: Security. The supported version that is affected is 21.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle AutoVue. Successful attacks of this...

5.3CVSS4.2AI score0.01331EPSS
Exploits0References1
OSV
OSV
added 2020/01/15 5:15 p.m.4 views

CVE-2020-2592

Vulnerability in the Oracle AutoVue product of Oracle Supply Chain component: Security. The supported version that is affected is 21.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle AutoVue. Successful attacks of this...

5.3CVSS7.3AI score0.01331EPSS
Exploits0References1
Prion
Prion
added 2020/01/15 5:15 p.m.13 views

Design/Logic Flaw

Vulnerability in the Oracle AutoVue product of Oracle Supply Chain component: Security. The supported version that is affected is 21.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle AutoVue. Successful attacks of this...

5CVSS4.5AI score0.01331EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/15 4:34 p.m.19 views

CVE-2020-2592

Vulnerability in the Oracle AutoVue product of Oracle Supply Chain component: Security. The supported version that is affected is 21.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle AutoVue. Successful attacks of this...

5.3CVSS4.7AI score0.01331EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/01/15 4:34 p.m.12 views

CVE-2020-2592

Vulnerability in the Oracle AutoVue product of Oracle Supply Chain component: Security. The supported version that is affected is 21.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle AutoVue. Successful attacks of this...

5.3CVSS5.5AI score0.01331EPSS
Exploits0References1
Symantec
Symantec
added 2020/01/14 12:0 a.m.35 views

Oracle AutoVue CVE-2020-2592 Remote Security Vulnerability

Description Oracle AutoVue is prone to a remote security vulnerability. The vulnerability can be exploited over 'HTTP' protocol. The 'Security' sub component is affected. This vulnerability affects the following supported versions: 12.0.2 Technologies Affected Oracle AutoVue 12.0.2 Recommendation...

1.2AI score0.01331EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2020/01/14 12:0 a.m.16 views

PT-2020-1465 · Oracle · Oracle Autovue

Name of the Vulnerable Software and Affected Versions: Oracle AutoVue version 21.0.2 Description: The issue is related to a lack of protection for service data in the Security component of Oracle AutoVue, allowing an unauthenticated attacker with network access via HTTP to compromise Oracle...

5.3CVSS4.6AI score0.01331EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/04/30 12:0 a.m.5 views

Vulnerability of the Format Handling sub-component – a 2D tool for viewing and annotating technical documents in Oracle AutoVue 3D Professional Advanced. This vulnerability allows unauthorized access to protected information.

The vulnerability of the Format Handling sub-component—a 2D tool for viewing and annotating technical documents in Oracle AutoVue 3D Professional Advanced—is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized...

5.3CVSS6.3AI score0.01227EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/04/23 7:32 p.m.16 views

CVE-2019-2575

Vulnerability in the Oracle AutoVue 3D Professional Advanced component of Oracle Supply Chain Products Suite subcomponent: Format Handling - 2D. Supported versions that are affected are 21.0.0 and 21.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...

5.3CVSS3.8AI score0.01227EPSS
Exploits0References1
OSV
OSV
added 2019/04/23 7:32 p.m.7 views

CVE-2019-2575

Vulnerability in the Oracle AutoVue 3D Professional Advanced component of Oracle Supply Chain Products Suite subcomponent: Format Handling - 2D. Supported versions that are affected are 21.0.0 and 21.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...

5.3CVSS6.3AI score0.01227EPSS
Exploits0References1
Prion
Prion
added 2019/04/23 7:32 p.m.18 views

Design/Logic Flaw

Vulnerability in the Oracle AutoVue 3D Professional Advanced component of Oracle Supply Chain Products Suite subcomponent: Format Handling - 2D. Supported versions that are affected are 21.0.0 and 21.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...

5CVSS4.4AI score0.01227EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2019/04/23 6:16 p.m.8 views

CVE-2019-2575

Vulnerability in the Oracle AutoVue 3D Professional Advanced component of Oracle Supply Chain Products Suite subcomponent: Format Handling - 2D. Supported versions that are affected are 21.0.0 and 21.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...

5.3AI score0.01227EPSS
Exploits0References1
Symantec
Symantec
added 2017/04/17 12:0 a.m.90 views

Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability

Description Apache Log4j is prone to remote code-execution vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. Apache Log4j 2.0-alpha1 through 2.8.1 ar...

7.5CVSS0.6AI score0.8904EPSS
Exploits2References5Affected Software84
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.31 views

Oracle AutoVue 20.0.1 AutoVueX ActiveX Control SaveViewStateToFile Vulnerability

No description provided by source. Oracle AutoVue 20.0.1 AutoVueX ActiveX Control SaveViewStateToFile Remote File Creation / Overwrite Vulnerability tested against: Internet Explorer 8 Microsoft Windows Server 2003 r2 sp2 download url of a test version:...

7.1AI score
Exploits0
msvr
msvr
added 2012/11/20 12:0 a.m.609 views

Oracle AutoVue DXF Parsing Could Allow Arbitrary Code Execution

Executive Summary Microsoft is providing notification of the discovery and remediation of a vulnerability affecting Oracle Autovue software versions 20.1.1 and 20.2. Microsoft discovered and disclosed the vulnerability under coordinated vulnerability disclosure to the affected vendor, Oracle...

4CVSS1.6AI score0.01734EPSS
Exploits0Affected Software1
seebug.org
seebug.org
added 2012/08/07 12:0 a.m.20 views

Oracle AutoVue ActiveX Control SetMarkupMode Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score0.59413EPSS
Exploits10
Exploit DB
Exploit DB
added 2012/08/06 12:0 a.m.36 views

Oracle AutoVue - ActiveX Control SetMarkupMode Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 HttpClients::IE, :uaminver = "6.0",...

7.5CVSS7AI score0.59413EPSS
Exploits10
Metasploit
Metasploit
added 2012/08/05 10:13 a.m.55 views

Oracle AutoVue ActiveX Control SetMarkupMode Buffer Overflow

This module exploits a vulnerability found in the AutoVue.ocx ActiveX control. The vulnerability, due to the insecure usage of an strcpy like function in the SetMarkupMode method, when handling a specially crafted sMarkup argument, allows to trigger a stack based buffer overflow which leads to co...

7.5CVSS0.59413EPSS
Exploits10
Saint
Saint
added 2012/07/17 12:0 a.m.68 views

Oracle AutoVue SetMarkupMode ActiveX Overflow

Added: 07/17/2012 CVE: CVE-2012-0549 BID: 53077 OSVDB: 81439 Background Oracle AutoVue Enterprise Visualization is a suite of Oracle products designed to deliver a web-based capability to access, view, digitally annotate and collaborate on technical and business documents, without requiring...

7.5CVSS6.4AI score0.59413EPSS
Exploits10
Saint
Saint
added 2012/07/17 12:0 a.m.50 views

Oracle AutoVue SetMarkupMode ActiveX Overflow

Added: 07/17/2012 CVE: CVE-2012-0549 BID: 53077 OSVDB: 81439 Background Oracle AutoVue Enterprise Visualization is a suite of Oracle products designed to deliver a web-based capability to access, view, digitally annotate and collaborate on technical and business documents, without requiring...

7.5CVSS6.5AI score0.59413EPSS
Exploits10
Rows per page
Query Builder