Lucene search
+L

151 matches found

Cvelist
Cvelist
added 2019/10/16 5:40 p.m.30 views

CVE-2019-2904

Vulnerability in the Oracle JDeveloper and ADF product of Oracle Fusion Middleware component: ADF Faces. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Orac...

9.8CVSS9.2AI score0.14264EPSS
Exploits0References7
CVE
CVE
added 2019/10/16 5:40 p.m.169 views

CVE-2019-2904

CVE-2019-2904 is an insecure deserialization vulnerability in Oracle JDeveloper/ADF Faces (Oracle Fusion Middleware). Affected: JDeveloper/ADF Faces components within Fusion Middleware, specifically the ADF Faces runtime used by Oracle JDeveloper and ADF. Affected versions listed include 11.1.1.9...

9.8CVSS9.1AI score0.14264EPSS
Exploits0References7Affected Software22
CNVD
CNVD
added 2019/10/16 12:0 a.m.3 views

Oracle JDeveloper and ADF Unauthorized Access Vulnerability (CNVD-2019-45397)

Oracle JDeveloper is an integrated development environment that provides end-to-end support for modeling, developing, debugging, optimizing, and deploying Java applications and Web services.Oracle ADF is an end-to-end Java EE framework that simplifies application development by providing...

3.5CVSS8.5AI score0.00882EPSS
Exploits0References1
Symantec
Symantec
added 2019/10/15 12:0 a.m.58 views

Oracle JDeveloper and ADF CVE-2019-2899 Remote Security Vulnerability

Description Oracle JDeveloper and ADF are prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'OAM' component is affected. This vulnerability affects the following supported versions: 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.3.0 Technologie...

1.6AI score0.00882EPSS
Exploits0References1Affected Software2
Symantec
Symantec
added 2019/10/15 12:0 a.m.72 views

Oracle JDeveloper and ADF CVE-2019-2904 Remote Security Vulnerability

Description Oracle JDeveloper and ADF are prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'ADF Faces' package is affected. This vulnerability affects the following supported versions: 11.1.1.9.0, 12.1.3.0.0, 12.2.1.3.0 Technologies Affect...

1.6AI score0.14264EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2017/10/18 12:0 a.m.92 views

Oracle JDeveloper ADF Faces Unspecified Remote Code Execution (October 2017 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by vulnerability in the Spatial Apache Groovy component of Oracle Database Server. Please see the vendor advisory for additional information. %NASLMINLEVEL 70300 C Tenable Network...

9.8CVSS8.3AI score0.17239EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2017/05/22 12:0 a.m.29 views

Fedora 24 : sane-backends (2017-0f5fe1913f)

CVE-2017-6318 sane-backends: SANENETCONTROLOPTION response packet may contain memory contents of the server fedora-all ---- This update adds the 'skip-adf' option to the avision driver. This let users work around problems on HP ScanJet 82xx/83xx scanners with no automatic document feeder attached...

7.5CVSS7.2AI score0.02963EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.6 views

CVE-2017-3255

Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: ADF Faces. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker wi...

5.8CVSS5.8AI score0.01756EPSS
Exploits0References3
CVE
CVE
added 2017/01/27 10:1 p.m.70 views

CVE-2017-3255

CVE-2017-3255 affects Oracle JDeveloper (ADF Faces within Oracle Fusion Middleware). Affected versions include 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. The vulnerability enables unauthenticated, network-accessible information disclosure over HTTP, pot...

5.8CVSS5.2AI score0.01756EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/01/20 12:0 a.m.58 views

Oracle JDeveloper ADF Faces Unspecified Remote Information Disclosure (January 2017 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability in the Application Development Framework ADF Faces subcomponent that allows an unauthenticated, remote attacker to disclose arbitrary...

5.8CVSS6.8AI score0.01756EPSS
Exploits0References2
CNVD
CNVD
added 2016/10/10 12:0 a.m.19 views

unADF Remote Code Execution Vulnerability

unADF is a set of disk file dumping tools. A remote code execution vulnerability exists in the 'extractTree' function in unADF. A remote attacker can exploit this vulnerability by using shell metacharacters in the directory name of an adf file to execute arbitrary code...

9.3CVSS8.5AI score0.05282EPSS
Exploits0References1
NVD
NVD
added 2016/10/03 6:59 p.m.19 views

CVE-2016-1244

The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...

9.3CVSS9.2AI score0.05282EPSS
Exploits0References6
OSV
OSV
added 2016/10/03 6:59 p.m.3 views

DEBIAN-CVE-2016-1244

The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...

8.8CVSS8AI score0.05282EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2016/10/03 6:59 p.m.28 views

CVE-2016-1244

The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...

9.3CVSS7.3AI score0.05282EPSS
Exploits0References1
OSV
OSV
added 2016/10/03 6:59 p.m.9 views

UBUNTU-CVE-2016-1244

The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...

8.8CVSS7.7AI score0.05282EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/10/03 12:0 a.m.29 views

CVE-2016-1244

The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...

9.4AI score0.05282EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2016/10/03 12:0 a.m.48 views

CVE-2016-1244

The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...

9.3CVSS9.5AI score0.05282EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/09/26 12:0 a.m.25 views

Debian DSA-3676-1 : unadf - security update

Tuomas Rasanen discovered two vulnerabilities in unADF, a tool to extract files from an Amiga Disk File dump .adf : - CVE-2016-1243 A stack-based buffer overflow in the function extractTree might allow an attacker, with control on the content of a ADF file, to execute arbitrary code with the...

9.8CVSS9.1AI score0.05282EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2016/09/24 12:0 a.m.4 views

PT-2016-4667 · Unadf · Unadf

Name of the Vulnerable Software and Affected Versions: unADF affected versions not specified Description: The issue allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file, specifically through the extractTree function in unADF. Recommendation...

9.8CVSS9.4AI score0.05282EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2016/09/19 12:0 a.m.98 views

Oracle JDeveloper Multiple RCE (July 2016 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by multiple remote code execution vulnerabilities : - A remote code execution vulnerability exists in the Application Development Framework ADF Faces subcomponent that allows an...

9.8CVSS9.4AI score0.07958EPSS
Exploits1References3
Rows per page
Query Builder