10502 matches found
CVE-2018-2721
Vulnerability in the Oracle Financial Services Price Creation and Discovery component of Oracle Financial Services Applications subcomponent: User Interface. The supported version that is affected is 8.0.5. Easily exploitable vulnerability allows low privileged attacker with network access via HT...
CVE-2018-2650
The CVE-2018-2650 entry applies to the Oracle Hospitality Reporting and Analytics component (subcomponent: Report) in Oracle Hospitality Applications, affecting versions 8.5.1 and 9.0.0. The vulnerability allows a low-privileged attacker who can access the system over HTTP to perform unauthorized...
CVE-2018-2582
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols...
CVE-2018-2721
The CVE-2018-2721 entry concerns the Oracle Financial Services Price Creation and Discovery component (subcomponent: User Interface) within Oracle Financial Services Applications. Affected version is 8.0.5. The vulnerability allows a low-privileged, network-accessible attacker (via HTTP) to perfo...
CVE-2018-2566
Vulnerability in the Integrated Lights Out Manager ILOM component of Oracle Sun Systems Products Suite subcomponent: Remote Console Application. Supported versions that are affected are 3.x and 4.x. Difficult to exploit vulnerability allows low privileged attacker with network access via TLS to...
CVE-2018-2582
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols...
CVE-2018-2629
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JGSS. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker...
Unspecified Vulnerability in Oracle Transportation Management (CNVD-2018-01956)
Oracle Supply Chain Products Suite is a suite of supply chain solutions from Oracle that provides value chain planning, value chain execution, product lifecycle management, etc. Oracle Transportation Management OTM is one of the components that can be used to manage all transportation activities...
Unspecified Vulnerability in Oracle Java SE, Java SE Embedded and Jrockit (CNVD-2018-02240)
Oracle Java SE, Java SE Embedded, and JRockit are products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments; Java SE Embedded is a Java platform for developing...
SQL Injection Vulnerability in CloudLock Win_3.1.6 Version
CloudLock is a free server security management software based on operating system kernel hardening technology, which supports cross-platform real-time, batch and remote security management of windows/linux servers. CloudLock Win3.1.6 has a SQL injection vulnerability that can be exploited by...
Unspecified Vulnerability in Oracle Fusion Middleware (CNVD-2018-02270)
Oracle Fusion Middleware is Oracle's suite of business innovation platforms for enterprise and cloud environments, of which Oracle WebCenter Portal is a component that seamlessly integrates portals with enterprise applications. A security vulnerability exists in the WebCenter Spaces Application...
UBUNTU-CVE-2018-2562
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server : Partition. Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocol...
UBUNTU-CVE-2018-2647
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Replication. Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...
Oracle Mysql Security Updates (jan2018-3236628) 04 - Windows
Oracle MySQL is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; ifdescripti...
Oracle Mysql Security Updates (jan2018-3236628) 04 - Linux
Oracle MySQL is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; ifdescripti...
Oracle Mysql Security Updates (jan2018-3236628) 03 - Linux
Oracle MySQL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; ifdescription...
UBUNTU-CVE-2018-2629
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JGSS. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated attacker...
Unspecified Vulnerability in IBM MQ Managed File Transfer Agent
IBM MQ Managed File Transfer Agent is a suite of file transfer software from IBM in the United States. The software transfers files between systems in an auditable manner. A security vulnerability exists in IBM MQ Managed File Transfer Agent that arises from the program setting insecure permissio...
CVE-2017-1699
IBM MQ Managed File Transfer Agent 8.0 and 9.0 sets insecure permissions on certain files it creates. A local attacker could exploit this vulnerability to modify or delete data contained in the files with an unknown impact. IBM X-Force ID: 134391...
Code injection
IBM MQ Managed File Transfer Agent 8.0 and 9.0 sets insecure permissions on certain files it creates. A local attacker could exploit this vulnerability to modify or delete data contained in the files with an unknown impact. IBM X-Force ID: 134391...