io.quarkus:quarkus-test-infinispan-client (>=2.5.0.CR1 <=3.0.0.Alpha2), org.infinispan:infinispan-distribution (>=13.0.0.Final <=14.0.24.Final) +9 more potentially affected by CVE-2023-5384 via org.infinispan:infinispan-cachestore-sql (>=13.0.0.CR2 <=14.0.24.Final)

org.infinispan:infinispan-cachestore-sql MAVEN version =13.0.0.CR2, =2.5.0.CR1, =13.0.0.Final, =13.0.0.Final, =13.0.0.CR2, =13.0.0.CR2, =13.0.0.CR2, =13.0.0.CR2, =13.0.0.CR2, =13.0.0.CR2, =14.0.10.Final, =13.0.0.CR2, =14.0.24.Final Source cves: CVE-2023-5384 Source advisory: OSV:GHSA-GG57-587F-H5...

org.infinispan:infinispan-distribution (>=15.0.0.Dev01 <=15.0.0.Dev10), org.infinispan:infinispan-javadoc-all (>=15.0.0.Dev01 <=15.0.0.Dev10) +7 more potentially affected by CVE-2023-5384 via org.infinispan:infinispan-cachestore-sql (>=15.0.0.Dev01 <=15.0.0.Dev06)

org.infinispan:infinispan-cachestore-sql MAVEN version =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev06, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev01, =15.0.0.Dev10 Source cves: CVE-2023-5384 Source advisory: OSV:GHSA-GG57-587F-H5V6...

io.quarkus:quarkus-test-infinispan-client (>=2.5.0.CR1 <=3.0.0.Alpha2), org.infinispan:infinispan-cachestore-jdbc (>=13.0.0.CR1 <=14.0.24.Final) +16 more potentially affected by CVE-2023-5384 via org.infinispan:infinispan-cachestore-jdbc-common (>=13.0.0.CR1 <=14.0.24.Final)

org.infinispan:infinispan-cachestore-jdbc-common MAVEN version =13.0.0.CR1, =2.5.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =13.0.0.CR1, =14.0.10.Final, =13.0.0.CR1, =14.0.24.Final and more...

The vulnerability of the CacheStore component of the Oracle Coherence software platform, which allows a hacker to trigger a service failure.

The vulnerability of the CacheStore component of the Oracle Coherence software platform relates to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

Oracle Coherence (July 2020 CPU)

The version of the Oracle Coherence installed on the remote host is missing a critical patch update. It is, therefore, affected by a vulnerability, as referenced in the July 2020 Oracle CPU advisory. - Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore...

CVE-2020-14642

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

CVE-2020-14642

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

Design/Logic Flaw

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

CVE-2020-14642

CVE-2020-14642 affects Oracle Coherence (Fusion Middleware) CacheStore. Affected versions: 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. The vulnerability permits an unauthenticated remote attacker over HTTP to cause a hang or complete DoS in Oracle Coherence. CVSS 3.1 base score 7....

CVE-2020-14642

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: CacheStore. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

Oracle Coherence (Jan 2020 CPU)

The version of the tested product installed on the remote host is prior to tested version. It is, therefore, affected by a remote code execution vulnerability, as referenced in the January 2020 Oracle CPU advisory. Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware componen...

The vulnerabilities of the Caching components, CacheStore, and the software platform for data processing in Oracle Coherence allow a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Caching, CacheStore, and Invocation components of the Oracle Coherence data processing software platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information through the HT...

CVE-2020-2915

CVE-2020-2915 affects Oracle Coherence within Oracle Fusion Middleware (Caching, CacheStore, Invocation). Affected versions are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0. The issue allows an unauthenticated attacker with network access via IIOP/T3 to compromise Oracle Coherence, potentially tak...

The vulnerability of the Caching and CacheStore components of the Oracle Coherence software application processing platform allows a hacker to gain full control over the application.

The vulnerability of the Caching and CacheStore components of the Oracle Coherence software application processing platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain full control over the application through th...

Design/Logic Flaw

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Caching,CacheStore,Invocation. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 ...

CVE-2020-2555

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Caching,CacheStore,Invocation. Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 ...

PT-2020-1544 · Oracle · Oracle Coherence

Name of the Vulnerable Software and Affected Versions: Oracle Coherence versions 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, and 12.2.1.4.0 Description: The issue is related to insufficient access control in the Caching, CacheStore, Invocation component of Oracle Coherence, allowing an unauthenticated...

Oracle Coherence CVE-2020-2555 Multiple Remote Security Vulnerabilities

Description Oracle Coherence is prone to multiple remote security vulnerabilities. The vulnerability can be exploited over the 'T3' protocol. The 'Caching', 'CacheStore' and 'Invocation' components are affected. This vulnerability affects the following supported versions: 12.1.3.0.0, 12.2.1.3.0 a...