65 matches found
CVE-2020-14670
Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite component: Settings. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
CVE-2020-14627
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Query. Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...
Unauthorized Access Vulnerability in uni-app of Digital Paradise (Beijing) Network Technology Co.
uni-app is a framework for developing all front-end applications using Vue.js, developers write a set of code that can be published to H5, and a variety of small programs WeChat/Alipay/Baidu/Headline/QQ/Pin/Nail/Taobao, fast apps and other platforms, and can be directly packaged in HBuilderX to...
CVE-2020-2600
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Elastic Search. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...
CVE-2020-2538
Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware component: Advanced UI. The supported version that is affected is 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Sites...
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2018-24267)
Oracle E-Business Suite E-Business Suite is a set of Oracle's fully integrated global business management software.Applications Manager is one of the components used to monitor the performance and availability of Oracle application servers. A security vulnerability exists in the None subcomponent...
CVE-2018-6219
An Insecure Update via HTTP vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to eavesdrop and tamper with certain types of update data...
CVE-2018-6219
An Insecure Update via HTTP vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to eavesdrop and tamper with certain types of update data...
Design/Logic Flaw
An Insecure Update via HTTP vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to eavesdrop and tamper with certain types of update data...
CVE-2018-6219
An Insecure Update via HTTP vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to eavesdrop and tamper with certain types of update data...
Drupal Access Control Bypass Vulnerability
Drupal is a free and open source content management system developed in PHP and maintained by the Drupal community.Settings Tray module is one of the Tray settings modules. A security vulnerability exists in the Settings Tray module in Drupal. An attacker can exploit this vulnerability to update...
CVE-2017-12801
The UpdateDataSize function in ebmlmaster.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service assert fault via a crafted mkv file...
Oracle Communications Policy Management Unauthorized Operation Vulnerability
Oracle Communications Applications is a suite of Oracle applications for rapidly delivering and monetizing digital life communications.Oracle Communications Policy Management is one of the communications policy management components. A security vulnerability exists in the Portal, CMP subcomponent...
CVE-2017-3630
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris...
CVE-2016-8299
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications subcomponent: Core. Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows low privileged attacker with...
Unspecified Vulnerability in Oracle Sun Systems Products Suite Oracle Solaris Component
Oracle Sun Systems Products Suite is a suite of Sun systems products from Oracle Corporation, of which Solaris is a Unix-like operating system. A local security vulnerability exists in the Bash subcomponent of the Oracle Solaris component version 10 of the Oracle Sun Systems Products Suite. An...
Oracle Communications Applications Unspecified Vulnerability in Oracle Communications EAGLE Application Processor Component
Oracle Communications is a suite of communications applications for rapidly delivering and monetizing digital lifestyle services from Oracle Corporation. the Oracle Communications EAGLE Application Processor is one of the platform components that provides Signaling Transmission Points STPs,...
Allround Automations PL/SQL Developer < 11.0.6.1776 HTTP Insecure Update RCE
The version of Allround Automations PL/SQL Developer installed on the remote host is prior to 11.0.6.1776. It is, therefore, affected by a remote code execution vulnerability due to a failure to properly verify the origin or authenticity of update data sent via HTTP. A man-in-the-middle attacker...
Unspecified Vulnerability in Oracle Fusion Middleware WebLogic Server Component (CNVD-2016-02580)
Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's business innovation platform for enterprise and cloud environments, of which Oracle WebLogic Server is an application server component for both cloud and traditional environments. An unspecified vulnerability in the Core...
Unspecified Vulnerability in Oracle Financial Services Software Oracle FLEXCUBE Direct Banking Component (CNVD-2016-02479)
Oracle Financial Services Software is a set of Oracle's core banking, online banking and property management financial services software, of which Oracle FLEXCUBE Direct Banking is a set of Internet and mobile banking solution components. An unspecified vulnerability exists in the Pre-Login...