Lucene search
K

334 matches found

Positive Technologies
Positive Technologies
added 2023/07/18 12:0 a.m.4 views

PT-2023-3627 · Oracle · Application Express Customers Plugin

Name of the Vulnerable Software and Affected Versions: Application Express Customers Plugin versions 18.2 through 22.2 Description: The issue exists due to insufficient input validation in the Application Express Customers Plugin component of Oracle Application Express. This allows a remote...

9CVSS8.6AI score0.00521EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/07/18 12:0 a.m.7 views

PT-2023-3697 · Oracle · Application Express Administration

Name of the Vulnerable Software and Affected Versions: Application Express Administration versions 18.2 through 22.2 Description: The issue is related to insufficient input validation in the Application Express Administration product of Oracle Application Express. It allows an unauthenticated...

5.6CVSS5.1AI score0.00321EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/07/18 12:0 a.m.8 views

PT-2023-3698 · Oracle · Oracle Application Express Team Calendar Plugin

Name of the Vulnerable Software and Affected Versions: Oracle Application Express Team Calendar Plugin versions 18.2 through 22.1 Description: The issue is related to insufficient input validation in the Application Express Team Calendar Plugin component of Oracle Application Express. This easily...

9CVSS8.4AI score0.00521EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/07/18 12:0 a.m.4 views

Oracle Application Express 安全漏洞

Oracle Application Express is a low-code development platform from Oracle Corporation. A security vulnerability exists in the Application Express Team Calendar Plugin product for Oracle Application Express, which arises from a vulnerability in the User Account module that allows a low-privileged...

9CVSS8.2AI score0.00521EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/18 12:0 a.m.4 views

Oracle Application Express 安全漏洞

Oracle Application Express is the United States Oracle Oracle, a low-code development platform. A security vulnerability exists in the Application Express Customers Plugin for Oracle Application Express, which can be exploited by an attacker to cause the Application Express Customers Plugin to be...

9CVSS6.6AI score0.00521EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:47 a.m.2 views

SUSE CVE-2012-1708

Unspecified vulnerability in the Application Express component in Oracle Database Server 4.0 and 4.1 allows remote attackers to affect integrity via unknown vectors...

4.3CVSS6.9AI score0.02558EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:40 a.m.3 views

SUSE CVE-2013-1519

Unspecified vulnerability in the Application Express component in Oracle Database Server before 4.2.1 allows remote attackers to affect integrity via unknown vectors...

5CVSS6.8AI score0.01408EPSS
Exploits0References5
NCSC
NCSC
added 2022/10/19 12:0 a.m.9 views

Vulnerabilities fixed in Oracle Database Server

Vulnerabilities have been fixed in Oracle Database Server. The vulnerabilities allow a malicious party to carry out attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Remote code execution User rights Access to sensitive data Orac...

9.1CVSS8.9AI score0.0486EPSS
Exploits2
NCSC
NCSC
added 2022/07/20 12:0 a.m.38 views

Vulnerabilities fixed in Oracle Database Server

Oracle has fixed vulnerabilities in the following products: Oracle Database Server Oracle Database - Enterprise Edition RDBMS Security. Oracle Spatial and Graph Oracle Universal Installer Oracle Application Express Oracle SQLcl The vulnerabilities potentially enable a malicious party to perform...

9.8CVSS6.3AI score0.44515EPSS
Exploits4
NCSC
NCSC
added 2022/04/20 12:0 a.m.6 views

Vulnerabilities fixed in Oracle Database Server

Oracle has fixed vulnerabilities in the following products: Database - Enterprise Edition Database Configuration Assistant Spatial and Graph Application Express APEX The vulnerabilities potentially enable a malicious party to execute attacks that result in the following categories of damage:...

8.2CVSS7.5AI score0.01655EPSS
Exploits1
NCSC
NCSC
added 2022/01/19 12:0 a.m.12 views

Vulnerabilities fixed in Oracle Database Server

Oracle has fixed vulnerabilities in the following Oracle Database Server products: Database - Enterprise Edition Database Configuration Assistant Spatial and Graph Application Express APEX Engineered Systems Utilities The vulnerabilities allow a malicious person to carry out attacks execute attac...

7.8CVSS6AI score0.99999EPSS
Exploits22
Tenable Nessus
Tenable Nessus
added 2022/01/19 12:0 a.m.256 views

Oracle Database Server (Jan 2022 CPU)

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2022 CPU advisory. - Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 19c and 21c...

7.4CVSS6AI score0.01433EPSS
Exploits0References5
NCSC
NCSC
added 2021/10/20 12:0 a.m.48 views

Vulnerabilities fixed in Oracle Database Server

Oracle has fixed vulnerabilities in the following products: Database - Enterprise Edition Spatial and Graph Application Express APEX Engineered Systems Utilities The vulnerabilities potentially enable a malicious party to execute attacks that result in the following categories of damage:...

9.8CVSS7.1AI score0.18114EPSS
Exploits8
OSV
OSV
added 2021/07/21 12:15 a.m.5 views

CVE-2021-2460

Vulnerability in the Oracle Application Express Data Reporter component of Oracle Database Server. The supported version that is affected is Prior to 21.1.0.00.04. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to...

5.4CVSS6.7AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/07/20 10:45 p.m.12 views

CVE-2021-2460

Vulnerability in the Oracle Application Express Data Reporter component of Oracle Database Server. The supported version that is affected is Prior to 21.1.0.00.04. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to...

5.4CVSS5.7AI score0.00504EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/20 12:0 a.m.5 views

Oracle Database Server 输入验证错误漏洞

Oracle Database Server is a relational database management system from Oracle Corporation. A security vulnerability exists in the Oracle Application Express Data Reporter component of Oracle Database Server versions prior to 21.1.0.00.04, which could be exploited by an attacker to cause...

5.4CVSS8.2AI score0.00504EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/07 10:7 a.m.28 views

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Sourcing

Summary Multiple Oracle database server security vulnerabilities affect IBM Emptoris Sourcing. Vulnerability Details CVEID: CVE-2021-2045 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Text component could allow an authenticated attacker to cause a denial of...

8.8CVSS6.3AI score0.01673EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/07 10:6 a.m.31 views

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Supplier Lifecycle Mgmt

Summary Multiple Oracle database server security vulnerabilities affect IBM Emptoris Supplier Lifecycle Management. Vulnerability Details CVEID: CVE-2021-2045 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Text component could allow an authenticated attacker to...

8.8CVSS6.3AI score0.01673EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/07 10:4 a.m.37 views

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Program Management

Summary Multiple Oracle Database server security vulnerabilities affect IBM IBM Emptoris Program Management. Vulnerability Details CVEID: CVE-2021-2045 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Text component could allow an authenticated attacker to cause ...

8.8CVSS6.3AI score0.01673EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/07 10:1 a.m.46 views

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Contract Management

Summary Multiple Oracle database server security vulnerabilities affect IBM Emptoris Contract Management. Vulnerability Details CVEID: CVE-2021-2045 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Text component could allow an authenticated attacker to cause a...

8.8CVSS6.3AI score0.01673EPSS
Exploits0Affected Software1
Rows per page
Query Builder