3 matches found
Oracle Fusion Middleware Oracle HTTP Server (Apr 2020 CPU)
The version of Oracle HTTP Server installed on the remote host is affected by the following vulnerabilities as referenced in the April 2020 CPU advisory: - An integer overflow in xmlmemory.c in libxml2 before 2.9.5, as used in Oracle HTTP Server's Web Listener component, allows a remote attacker ...
CVE-2020-2952
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful...
CVE-2020-2952
CVE-2020-2952 affects Oracle Fusion Middleware’s Oracle HTTP Server (Web Listener) version 11.1.1.9.0. The vulnerability enables an unauthenticated, network-accessible attacker over HTTP to modify or delete data and to read data from the Oracle HTTP Server, as indicated by the CVSS 3.0 base metri...