Oracle Database Server Application Express Component Cross-Site Scripting Vulnerability

Oracle Database Server is the United States Oracle Oracle a set of relational database management system. The database management system provides data management, distributed processing and other functions. Application Express APEX, formerly known as HTML DB is one of the Web applications for the...

Unspecified Vulnerability in Oracle Database Server Application Express Component (CNVD-2020-44293)

Oracle Database Server is the United States Oracle Oracle a set of relational database management system. The database management system provides data management, distributed processing and other functions. Application Express APEX, formerly known as HTML DB is one of the Web applications for the...

Oracle Database Server Application Express Component Cross-Site Scripting Vulnerability (CNVD-2020-44292)

Oracle Database Server is the United States Oracle Oracle a set of relational database management system. The database management system provides data management, distributed processing and other functions. Application Express APEX, formerly known as HTML DB is one of the Web applications for the...

Unspecified Vulnerability in Oracle Database Server Application Express Component (CNVD-2020-44287)

Oracle Database Server is the United States Oracle Oracle a set of relational database management system. The database management system provides data management, distributed processing and other functions. Application Express APEX, formerly known as HTML DB is one of the Web applications for the...

CVE-2020-2978

Vulnerability in the Oracle Database - Enterprise Edition component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 18c and 19c. Easily exploitable vulnerability allows high privileged attacker having DBA role account privilege with network access via Oracl...

CVE-2020-2978

CVE-2020-2978 affects Oracle Database - Enterprise Edition; vulnerable in versions 12.1.0.2, 12.2.0.1, 18c, 19c. The connected material indicates the issue relates to RMAN auditing: Oracle RMAN Missing Auditing for Point‑In‑Time Recovery, enabling limited visibility of certain RMAN operations. Th...

VulnCheck KEV: CVE-2011-4275

Multiple cross-site scripting XSS vulnerabilities in iTop aka IT Operations Portal 1.1.181 and 1.2.0-RC-282 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted company name, 2 a crafted database server name, 3 a crafted CSV file, 4 a crafted copy-and-paste...

Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform

Summary Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform Vulnerability Details CVEID: CVE-2020-4200 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 10.5, 11.1, and 11.5 could allow an...

Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Sourcing

Summary Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Sourcing Vulnerability Details CVEID: CVE-2020-4200 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 10.5, 11.1, and 11.5 could allow an authenticated attacker to send...

Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Supplier Lifecycle Mgmt

Summary Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Supplier Lifecycle Mgmt Vulnerability Details CVEID: CVE-2020-4230 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 11.1 and 11.5 is vulnerable to an escalation of...

GaussDB: Restricting the Permission for the SSL Private Key

If SSL is used, you need to configure the SSL certificate on the database server. You are advised to set the permission for the private key file to owner-readable-only. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Contract Management

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Contract Management. Vulnerability Details CVEID: CVE-2020-2527 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticated attacker to...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Strategic Supply Management Platform. Vulnerability Details CVEID: CVE-2020-2527 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticate...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Program Management

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Program Management. Vulnerability Details CVEID: CVE-2020-2527 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticated attacker to obta...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Supplier Lifecycle Mgmt

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Supplier Lifecycle Mgmt. Vulnerability Details CVEID: CVE-2020-2527 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticated attacker to...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Sourcing

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Sourcing. Vulnerability Details CVEID: CVE-2020-2527 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticated attacker to obtain sensiti...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Strategic Supply Management. Vulnerability Details CVEID: CVE-2019-2734 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticated attacke...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Contract Management

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Contract Management. Vulnerability Details CVEID: CVE-2019-2734 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticated attacker to cau...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Sourcing

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Sourcing. Vulnerability Details CVEID: CVE-2019-2734 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticated attacker to cause no...

Security Bulletin: Multiple Oracle Database Server Security Vulnerabilities Affect IBM Emptoris Program Management

Summary Oracle Database Server Publicly disclosed vulnerability affects IBM Emptoris Program Management. Vulnerability Details CVEID: CVE-2019-2734 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Core RDBMS component could allow an authenticated attacker to caus...