58 matches found
CVE-2025-30756
Vulnerability in Oracle REST Data Services component: General. The supported version that is affected is 24.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle REST Data Services. Successful attacks require human interaction from...
CVE-2025-30756
Vulnerability in Oracle REST Data Services component: General. The supported version that is affected is 24.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle REST Data Services. Successful attacks require human interaction from...
CVE-2025-30756
Vulnerability in Oracle REST Data Services component: General. The supported version that is affected is 24.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle REST Data Services. Successful attacks require human interaction from...
PT-2025-29607 · Oracle · Oracle Rest Data Services
Name of the Vulnerable Software and Affected Versions: Oracle REST Data Services version 24.2.0 Description: An easily exploitable issue exists in Oracle REST Data Services that allows an unauthenticated attacker with network access via HTTP to compromise the service. Successful attacks require...
Oracle REST Data Services 跨站请求伪造漏洞
Oracle REST Data Services is an Oracle middleware tool for exposing Oracle database functionality to applications via a RESTful API. A security vulnerability exists in Oracle REST Data Services version 24.2.0 that originates from an unauthenticated attacker who can attack via HTTP web access,...
CVE-2020-14745
Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...
CVE-2020-14744
Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...
Oracle Critical Patch Update, January 2025 Security Update Review
Oracle released its first quarterly edition of this year’s Critical Patch Update, which received patches for 318 security vulnerabilities. Some of the vulnerabilities addressed in this update impact more than one product. These patches address vulnerabilities in various product families, includin...
Oracle Patch Tuesday April 2023 Security Update Review
Oracle has released the second quarterly edition of Critical Patch Update, which contains a group of patches for 433 security vulnerabilities. Some of the vulnerabilities addressed this month impact various products. These patches address vulnerabilities in Oracle code and third-party components...
The vulnerability of the General component (jQuery) of the Oracle REST Data Services data service allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the General component jQuery in the Oracle REST Data Services data service is related to security mechanism failures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information via the HTTP network...
The vulnerability of the General component of the Oracle REST Data Services service allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the General component of the Oracle REST Data Services is related to security mechanism failures. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information via the HTTP network protocol...
IBM Oracle REST Data Services Unauthorized Access Vulnerability
IBM Oracle REST Data Services ORDS is a JAVA Web middleware application from IBM. The middleware maps REST interfaces such as Http/Https to database transactions. An unauthorized access vulnerability exists in Oracle REST Data Services, which can be exploited by an attacker to compromise Oracle...
CVE-2020-14745
Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...
CVE-2020-14744
Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...
CVE-2020-14744
Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...
CVE-2020-14745
Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...
CVE-2020-14744
Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...
CVE-2020-14744
Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...