39 matches found
Oracle WebLogic Server Multiple Vulnerabilities (Oct 2019 CPU)
The version of Oracle WebLogic Server installed on the remote host is affected by multiple vulnerabilities: - An unspecified vulnerability in the jquery component of the Web Services of Oracle Weblogic Server. An unauthenticated, remote attacker can exploit this to gain unauthorized update, inser...
The vulnerability of the Web Container sub-component of the Oracle Service Bus component of the Oracle Fusion Middleware software platform allows a attacker to cause a service failure.
The vulnerability of the Web Container sub-component of the Oracle Service Bus component of the Oracle Fusion Middleware software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service failures using the HTTP protocol...
CVE-2019-2576
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Container. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
CVE-2019-2576
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Container. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
Design/Logic Flaw
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Container. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
CVE-2019-2576
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Container. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
CVE-2019-2576
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Container. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
CVE-2017-10119
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: OSB Web Console Design, Admin. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Servic...
CVE-2017-10119
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: OSB Web Console Design, Admin. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Servic...
Design/Logic Flaw
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: OSB Web Console Design, Admin. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Servic...
CVE-2017-10119
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: OSB Web Console Design, Admin. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Servic...
Unspecified Vulnerability in Oracle Service Bus
Oracle Fusion Middleware Oracle Fusion Middleware is Oracle's business innovation platform for enterprise and cloud environments, which provides middleware, software collections, and other capabilities.Oracle Service Bus is one of the components that supports the interaction between managed...
CVE-2017-3507
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Console Design. Supported versions that are affected are 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HT...
CVE-2017-3507
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Console Design. Supported versions that are affected are 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HT...
Design/Logic Flaw
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Console Design. Supported versions that are affected are 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HT...
CVE-2017-3507
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Console Design. Supported versions that are affected are 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HT...
CVE-2017-3507
CVE-2017-3507 affects Oracle Fusion Middleware’s Oracle Service Bus (Web Console Design) up to version 12.2.1.2.0. The vulnerability allows an unauthenticated, network-accessing attacker over HTTP to compromise Oracle Service Bus by performing unauthorized updates/inserts/deletes and reads, poten...
CVE-2017-3507
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Console Design. Supported versions that are affected are 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HT...
Oracle Service Bus Remote Vulnerability
Oracle Service Bus is a service and messaging oriented solution A remote security vulnerability exists in Oracle Service Bus, which can be exploited by remote attackers to compromise system confidentiality, integrity, and availability...