21 matches found
Oracle Health Sciences Applications security vulnerabilities
Oracle Health Sciences Applications is a clinical research and development solution developed by Oracle Corporation for the healthcare industry in the United States. Version 7.0.1.0 of Oracle Life Sciences Central Designer in Oracle Health Sciences Applications contains a security vulnerability...
Oracle Patch Tuesday April 2023 Security Update Review
Oracle has released the second quarterly edition of Critical Patch Update, which contains a group of patches for 433 security vulnerabilities. Some of the vulnerabilities addressed this month impact various products. These patches address vulnerabilities in Oracle code and third-party components...
CVE-2023-21926
Vulnerability in the Oracle Health Sciences InForm product of Oracle Health Sciences Applications component: Core. Supported versions that are affected are Prior to 6.3.1.3 and Prior to 7.0.0.1. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure wher...
Buffer overflow
Vulnerability in the Oracle Clinical Remote Data Capture product of Oracle Health Sciences Applications component: Forms. The supported version that is affected is 5.4.0.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Clinical...
CVE-2023-21993
CVE-2023-21993 affects Oracle Clinical Remote Data Capture (Oracle Health Sciences Applications), component Forms, with vulnerable version 5.4.0.2. The issue is a network-accessible, low-privilege flaw that can lead to unauthorized data access (CVSS v3.1 base score 6.5, Confidentiality impact). P...
CVE-2023-21924
The CVE-2023-21924 entry concerns Oracle Health Sciences InForm (Core) within Oracle Health Sciences Applications. Affected versions are prior to 6.3.1.3 and prior to 7.0.0.1. The vulnerability is exploitable by a high-privilege attacker with network access via HTTP, with user interaction require...
CVE-2023-21925
The CVE-2023-21925 issue affects Oracle Health Sciences InForm (Core) with input validation in the Core component. Versions prior to 6.3.1.3 and prior to 7.0.0.1 are vulnerable. An unauthenticated attacker with network access via HTTP can compromise InForm, enabling partial denial of service (par...
Design/Logic Flaw
Vulnerability in the Oracle Argus Safety product of Oracle Health Sciences Applications component: Case Form, Local Affiliate Form. The supported version that is affected is 8.2.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
Design/Logic Flaw
Vulnerability in the Oracle Argus Safety product of Oracle Health Sciences Applications component: Letters. The supported version that is affected is 8.2.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Argus Safety. While the...
CVE-2021-2110
Vulnerability in the Oracle Argus Safety product of Oracle Health Sciences Applications component: Letters. The supported version that is affected is 8.2.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Argus Safety. While the...
CVE-2021-2110
Vulnerability in the Oracle Argus Safety product of Oracle Health Sciences Applications component: Letters. The supported version that is affected is 8.2.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Argus Safety. While the...
CVE-2021-2040
Vulnerability in the Oracle Argus Safety product of Oracle Health Sciences Applications component: Case Form, Local Affiliate Form. The supported version that is affected is 8.2.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
Oracle Ties Previous All-Time Patch High with January Updates
Oracle has patched 334 vulnerabilities across all of its product families in its January 2020 quarterly Critical Patch Update CPU. Out of these, 43 are critical/severe flaws carrying CVSS scores of 9.1 and above. The CPU ties for Oracle’s previous all-time high for number of patches issued, in Ju...
CVE-2019-2629
The CVE-2019-2629 entry concerns Oracle Health Sciences Data Management Workbench (UI subcomponent) within Oracle Health Sciences Applications, affected in version 2.4.8. The vulnerability allows a low-privileged attacker with network access over HTTP to compromise the system, enabling unauthoriz...
Design/Logic Flaw
Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications subcomponent: Console. Supported versions that are affected are 8.1 and 8.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Argus Safety...
Design/Logic Flaw
Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications subcomponent: Console. Supported versions that are affected are 8.1 and 8.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Argus Safety...
CVE-2019-2432
Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications subcomponent: Login. Supported versions that are affected are 8.1 and 8.2. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Argus Safety...
CVE-2019-2431
Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications subcomponent: Console. Supported versions that are affected are 8.1 and 8.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Argus Safety...
CVE-2018-2643
Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications subcomponent: Case Selection. Supported versions that are affected are 7.x and 8.0.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Argus...
Design/Logic Flaw
Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications subcomponent: File Upload. Supported versions that are affected are 7.x and 8.0.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Argus...