Lucene search
K

6 matches found

Check Point Advisories
Check Point Advisories
added 2015/10/04 12:0 a.m.11 views

Oracle Endeca Information Discovery Integrator ETL Server MoveFile Directory Traversal (CVE-2015-2605)

A directory traversal vulnerability has been reported in Oracle Endeca Information Discovery Integrator ETL Server. The vulnerability is due to a lack of input validation. A remote attacker can exploit this vulnerability by sending crafted SOAP requests to the target system, leading to informatio...

7.5CVSS4.7AI score0.02974EPSS
Exploits0
NVD
NVD
added 2015/07/16 10:59 a.m.22 views

CVE-2015-2605

Unspecified vulnerability in the Oracle Endeca Information Discovery Studio component in Oracle Fusion Middleware 2.2.2, 2.3, 2.4, 3.0, and 3.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Integrator, a different vulnerability than...

7.5CVSS5.6AI score0.02974EPSS
Exploits0References3
NVD
NVD
added 2015/07/16 10:59 a.m.23 views

CVE-2015-2603

Unspecified vulnerability in the Oracle Endeca Information Discovery Studio component in Oracle Fusion Middleware 2.2.2, 2.3, 2.4, 3.0, and 3.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Integrator, a different vulnerability than...

7.5CVSS5.6AI score0.02974EPSS
Exploits0References3
Prion
Prion
added 2015/07/16 10:59 a.m.22 views

Design/Logic Flaw

Unspecified vulnerability in the Oracle Endeca Information Discovery Studio component in Oracle Fusion Middleware 2.2.2, 2.3, 2.4, 3.0, and 3.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Integrator, a different vulnerability than...

7.5CVSS5.9AI score0.02974EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/07/16 10:0 a.m.25 views

CVE-2015-2604

Unspecified vulnerability in the Oracle Endeca Information Discovery Studio component in Oracle Fusion Middleware 2.2.2, 2.3, 2.4, 3.0, and 3.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Integrator, a different vulnerability than...

5.6AI score0.02974EPSS
Exploits0References3
CVE
CVE
added 2015/07/16 10:0 a.m.49 views

CVE-2015-2605

CVE-2015-2605 affects Oracle Endeca Information Discovery Integrator ETL Server (Endeca IDI ETL Server) via a directory-traversal flaw in the MoveFile operation. Exploitation arises from insufficient input validation when handling crafted SOAP requests, enabling a remote authenticated attacker to...

7.5CVSS5.7AI score0.02974EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder