io.quarkus:quarkus-test-infinispan-client (>=2.5.0.CR1 <=3.0.0.Alpha2), org.infinispan:infinispan-cachestore-jdbc (>=13.0.0.CR1 <=14.0.24.Final) +16 more potentially affected by CVE-2023-5384 via org.infinispan:infinispan-cachestore-jdbc-common (>=13.0.0.CR1 <=14.0.24.Final)

org.infinispan:infinispan-cachestore-jdbc-common MAVEN version =13.0.0.CR1, =2.5.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =14.0.10.Final, =13.0.0.CR1, =14.0.24.Final and more...

io.quarkus:quarkus-test-infinispan-client (>=2.5.0.CR1 <=3.0.0.Alpha2), org.infinispan:infinispan-distribution (>=13.0.0.Final <=14.0.24.Final) +9 more potentially affected by CVE-2023-5384 via org.infinispan:infinispan-cachestore-sql (>=13.0.0.CR2 <=14.0.24.Final)

org.infinispan:infinispan-cachestore-sql MAVEN version =13.0.0.CR2, =2.5.0.CR1, =13.0.0.Final, =13.0.0.Final, =13.0.0.CR2, =13.0.0.CR2, =13.0.0.CR2, =13.0.0.CR2, =13.0.0.CR2, =13.0.0.CR2, =14.0.10.Final, =13.0.0.CR2, =14.0.24.Final Source cves: CVE-2023-5384 Source advisory: OSV:GHSA-GG57-587F-H5...

org.infinispan:infinispan-distribution (>=15.0.0.Dev01 <=15.0.0.Dev10), org.infinispan:infinispan-javadoc-all (>=15.0.0.Dev01 <=15.0.0.Dev10) +7 more potentially affected by CVE-2023-5384 via org.infinispan:infinispan-cachestore-sql (>=15.0.0.Dev01 <=15.0.0.Dev06)

org.infinispan:infinispan-cachestore-sql MAVEN version =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev06, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev10 Source cves: CVE-2023-5384 Source advisory: OSV:GHSA-GG57-587F-H5V6...

Oracle Coherence (July 2020 CPU)

The version of the Oracle Coherence installed on the remote host is missing a critical patch update. It is, therefore, affected by a vulnerability, as referenced in the July 2020 Oracle CPU advisory. - Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore...

CVE-2020-14642

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

CVE-2020-14642

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

Design/Logic Flaw

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

CVE-2020-14642

CVE-2020-14642 affects Oracle Coherence (Fusion Middleware) CacheStore. Affected versions: 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. The vulnerability permits an unauthenticated remote attacker over HTTP to cause a hang or complete DoS in Oracle Coherence. CVSS 3.1 base score 7....

CVE-2020-14642

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

Oracle Coherence (Jan 2020 CPU)

The version of the tested product installed on the remote host is prior to tested version. It is, therefore, affected by a remote code execution vulnerability, as referenced in the January 2020 Oracle CPU advisory. Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware componen...

CVE-2020-2915

CVE-2020-2915 affects Oracle Coherence within Oracle Fusion Middleware (Caching, CacheStore, Invocation). Affected versions are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0. The issue allows an unauthenticated attacker with network access via IIOP/T3 to compromise Oracle Coherence, potentially tak...

Design/Logic Flaw

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Caching,CacheStore,Invocation. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 ...

CVE-2020-2555

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Caching,CacheStore,Invocation. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 ...

PT-2020-1544 · Oracle · Oracle Coherence

Name of the Vulnerable Software and Affected Versions: Oracle Coherence versions 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, and 12.2.1.4.0 Description: The issue is related to insufficient access control in the Caching, CacheStore, Invocation component of Oracle Coherence, allowing an unauthenticated...

Oracle Coherence CVE-2020-2555 Multiple Remote Security Vulnerabilities

Description Oracle Coherence is prone to multiple remote security vulnerabilities. The vulnerability can be exploited over the 'T3' protocol. The 'Caching', 'CacheStore' and 'Invocation' components are affected. This vulnerability affects the following supported versions: 12.1.3.0.0, 12.2.1.3.0 a...