10502 matches found
Authorization
Huawei Watch 2 with versions and earlier than OWDD.180707.001.E1 have an improper authorization vulnerability. Due to improper permission configuration for specific operations, an attacker who obtained the Huawei ID bound to the watch can bypass permission verification to perform specific...
OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
OpenJDK: Multi-Release attribute read from outside of the main manifest attributes (Utility, 8199171)
Vulnerability in the Java SE component of Oracle Java SE subcomponent: Utility. The supported version that is affected is Java SE: 11. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...
OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613)
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...
Huawei Watch Privilege Control Vulnerability
Huawei Watch 2 is Huawei's second generation smart sports watch. A privilege control vulnerability exists in Huawei Watch 2. Due to misconfiguration of privileges for specific operations, an attacker who has been informed that the watch is bound to a Huawei account can bypass privilege checking b...
OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613)
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...
OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
Unspecified Vulnerability in Oracle E-Business Suite E-Business Intelligence
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. E-Business Intelligence is one o...
Unspecified Vulnerability in Oracle E-Business Suite Marketing (CNVD-2019-40798)
Oracle E-Business Suite E-Business Suite is a fully integrated set of Oracle's global business management software. marketing is one of the Internet-based marketing management components. An unspecified vulnerability exists in Oracle E-Business Suite Marketing. An attacker could exploit this...
Unspecified Vulnerability in Oracle E-Business Suite User Management
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions.User Management is one of the use...
Unspecified Vulnerability in Oracle E-Business Suite Partner Management
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. partner management is one of the...
Unspecified Vulnerability in Oracle E-Business Suite Customer Interaction History (CNVD-2019-40794)
Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle, which provides customer relationship management, service management, financial management and other functions. The software provides customer relationship management,...
Unspecified Vulnerability in Oracle Fusion Middleware WebCenter Sites Component
Oracle Fusion Middleware is Oracle's business innovation platform for enterprise and cloud environments, and WebCenter Sites is a web experience management component that enables marketers and business users to create and manage interactive social online experiences to drive sales and customer...
Unspecified Vulnerability in Oracle Retail Applications Retail Open Commerce Platform
Oracle Retail Applications is the United States Oracle Oracle company's set of retail applications store solutions. Retail Open Commerce Platform is one of the e-commerce platform components. An unspecified vulnerability exists in Oracle Retail Applications Retail Open Commerce Platform. An...
Unspecified Vulnerability in Oracle Food and Beverage Applications Hospitality Gift and Loyalty Component
Oracle Food and Beverage Applications is a suite of food and beverage sales management solutions from Oracle Corporation, of which Hospitality Gift and Loyalty is one of the gift and membership components. An unspecified vulnerability exists in the Oracle Food and Beverage Applications Hospitalit...
Unspecified Vulnerability in Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Component (CNVD-2019-28255)
Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle that provides human capital management, financial management, supplier relationship management, and more.PeopleSoft Enterprise PeopleTools is one of the tools and technology platform components that...