Lucene search
K

90 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:44 p.m.10 views

CVE-2020-14745

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

4.3CVSS5.3AI score0.00948EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:13 p.m.6 views

CVE-2020-14744

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

6.5CVSS6.4AI score0.01281EPSS
Exploits0
Qualys Blog
Qualys Blog
added 2025/01/23 5:17 a.m.66 views

Oracle Critical Patch Update, January 2025 Security Update Review

Oracle released its first quarterly edition of this year’s Critical Patch Update, which received patches for 318 security vulnerabilities. Some of the vulnerabilities addressed in this update impact more than one product. These patches address vulnerabilities in various product families, includin...

9.5CVSS9.4AI score0.99957EPSS
Exploits70
NCSC
NCSC
added 2025/01/22 1:30 p.m.22 views

Vulnerabilities fixed in Oracle Database products

Oracle has fixed vulnerabilities in several database products and subsystems, including the Core Database, Grail, Application Express, GoldenGate and REST data. The vulnerabilities are in several components of the Oracle Database, including the Data Mining component and the Java VM. These...

10CVSS7AI score0.9378EPSS
Exploits53References1
Qualys Blog
Qualys Blog
added 2023/04/19 11:47 a.m.391 views

Oracle Patch Tuesday April 2023 Security Update Review

Oracle has released the second quarterly edition of Critical Patch Update, which contains a group of patches for 433 security vulnerabilities. Some of the vulnerabilities addressed this month impact various products. These patches address vulnerabilities in Oracle code and third-party components...

7.5CVSS9.5AI score0.99677EPSS
Exploits125
NVD
NVD
added 2022/11/15 2:15 a.m.16 views

CVE-2022-42131

Certain Liferay products are affected by: Missing SSL Certificate Validation in the Dynamic Data Mapping module's REST data providers. This affects Liferay Portal 7.1.0 through 7.4.2 and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 17, and 7.3 before service pack 3...

4.8CVSS0.00338EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/11/15 12:0 a.m.7 views

CVE-2022-42131

Certain Liferay products are affected by: Missing SSL Certificate Validation in the Dynamic Data Mapping module's REST data providers. This affects Liferay Portal 7.1.0 through 7.4.2 and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 17, and 7.3 before service pack 3...

7.1AI score0.00338EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/11/15 12:0 a.m.25 views

CVE-2022-42131

Certain Liferay products are affected by: Missing SSL Certificate Validation in the Dynamic Data Mapping module's REST data providers. This affects Liferay Portal 7.1.0 through 7.4.2 and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 17, and 7.3 before service pack 3...

5.4AI score0.00338EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/11/14 12:0 a.m.5 views

Liferay Portal和Liferay DXP 信任管理问题漏洞

Liferay Portal and Liferay DXP are both products of Liferay Inc.Liferay Portal is a J2EE-based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP ...

4.8CVSS5.2AI score0.00338EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2020/11/02 12:0 a.m.7 views

The vulnerability of the General component (jQuery) of the Oracle REST Data Services data service allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the General component jQuery in the Oracle REST Data Services data service is related to security mechanism failures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information via the HTTP network...

6.8CVSS6.9AI score0.01281EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/02 12:0 a.m.4 views

The vulnerability of the General component of the Oracle REST Data Services service allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the General component of the Oracle REST Data Services is related to security mechanism failures. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information via the HTTP network protocol...

4.3CVSS6.4AI score0.00948EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2020/10/22 12:0 a.m.5 views

IBM Oracle REST Data Services Unauthorized Access Vulnerability

IBM Oracle REST Data Services ORDS is a JAVA Web middleware application from IBM. The middleware maps REST interfaces such as Http/Https to database transactions. An unauthorized access vulnerability exists in Oracle REST Data Services, which can be exploited by an attacker to compromise Oracle...

4.3CVSS8.3AI score0.00948EPSS
Exploits0References1
NVD
NVD
added 2020/10/21 3:15 p.m.20 views

CVE-2020-14744

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

6.5CVSS0.01281EPSS
Exploits0References1
NVD
NVD
added 2020/10/21 3:15 p.m.17 views

CVE-2020-14745

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

4.3CVSS0.00948EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.6 views

CVE-2020-14745

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

4.3CVSS6.6AI score0.00948EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.5 views

CVE-2020-14744

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

6.5CVSS6.9AI score
Exploits0References1
Prion
Prion
added 2020/10/21 3:15 p.m.14 views

Design/Logic Flaw

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

4CVSS3.7AI score0.00948EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/10/21 3:15 p.m.21 views

Design/Logic Flaw

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

4CVSS6.3AI score0.01281EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/10/21 2:4 p.m.9 views

CVE-2020-14745

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

4.3CVSS5.3AI score0.00948EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/21 2:4 p.m.16 views

CVE-2020-14744

Vulnerability in the Oracle REST Data Services product of Oracle REST Data Services component: General. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c; Standalone ORDS: prior to 20.2.1. Easily exploitable vulnerability allows low privileged attacker with networ...

6.5CVSS6.5AI score0.01281EPSS
Exploits0References1
Rows per page
Query Builder