151 matches found
CVE-2019-2904
Vulnerability in the Oracle JDeveloper and ADF product of Oracle Fusion Middleware component: ADF Faces. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Orac...
CVE-2019-2904
CVE-2019-2904 is an insecure deserialization vulnerability in Oracle JDeveloper/ADF Faces (Oracle Fusion Middleware). Affected: JDeveloper/ADF Faces components within Fusion Middleware, specifically the ADF Faces runtime used by Oracle JDeveloper and ADF. Affected versions listed include 11.1.1.9...
Oracle JDeveloper and ADF Unauthorized Access Vulnerability (CNVD-2019-45397)
Oracle JDeveloper is an integrated development environment that provides end-to-end support for modeling, developing, debugging, optimizing, and deploying Java applications and Web services.Oracle ADF is an end-to-end Java EE framework that simplifies application development by providing...
Oracle JDeveloper and ADF CVE-2019-2899 Remote Security Vulnerability
Description Oracle JDeveloper and ADF are prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'OAM' component is affected. This vulnerability affects the following supported versions: 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.3.0 Technologie...
Oracle JDeveloper and ADF CVE-2019-2904 Remote Security Vulnerability
Description Oracle JDeveloper and ADF are prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'ADF Faces' package is affected. This vulnerability affects the following supported versions: 11.1.1.9.0, 12.1.3.0.0, 12.2.1.3.0 Technologies Affect...
Oracle JDeveloper ADF Faces Unspecified Remote Code Execution (October 2017 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by vulnerability in the Spatial Apache Groovy component of Oracle Database Server. Please see the vendor advisory for additional information. %NASLMINLEVEL 70300 C Tenable Network...
Fedora 24 : sane-backends (2017-0f5fe1913f)
CVE-2017-6318 sane-backends: SANENETCONTROLOPTION response packet may contain memory contents of the server fedora-all ---- This update adds the 'skip-adf' option to the avision driver. This let users work around problems on HP ScanJet 82xx/83xx scanners with no automatic document feeder attached...
CVE-2017-3255
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: ADF Faces. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker wi...
CVE-2017-3255
CVE-2017-3255 affects Oracle JDeveloper (ADF Faces within Oracle Fusion Middleware). Affected versions include 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. The vulnerability enables unauthenticated, network-accessible information disclosure over HTTP, pot...
Oracle JDeveloper ADF Faces Unspecified Remote Information Disclosure (January 2017 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability in the Application Development Framework ADF Faces subcomponent that allows an unauthenticated, remote attacker to disclose arbitrary...
unADF Remote Code Execution Vulnerability
unADF is a set of disk file dumping tools. A remote code execution vulnerability exists in the 'extractTree' function in unADF. A remote attacker can exploit this vulnerability by using shell metacharacters in the directory name of an adf file to execute arbitrary code...
CVE-2016-1244
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...
DEBIAN-CVE-2016-1244
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...
CVE-2016-1244
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...
UBUNTU-CVE-2016-1244
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...
CVE-2016-1244
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...
CVE-2016-1244
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file...
Debian DSA-3676-1 : unadf - security update
Tuomas Rasanen discovered two vulnerabilities in unADF, a tool to extract files from an Amiga Disk File dump .adf : - CVE-2016-1243 A stack-based buffer overflow in the function extractTree might allow an attacker, with control on the content of a ADF file, to execute arbitrary code with the...
PT-2016-4667 · Unadf · Unadf
Name of the Vulnerable Software and Affected Versions: unADF affected versions not specified Description: The issue allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file, specifically through the extractTree function in unADF. Recommendation...
Oracle JDeveloper Multiple RCE (July 2016 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by multiple remote code execution vulnerabilities : - A remote code execution vulnerability exists in the Application Development Framework ADF Faces subcomponent that allows an...