CVE-2016-3489

Unspecified vulnerability in the Data Pump Import component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors...

CVE-2016-3467

Oracle Database Server Version(s) affected: Application Express component in Oracle Database Server prior to 5.0.4. Description: an unspecified vulnerability in the Application Express component allows remote attackers to affect availability via unknown vectors. Evidence in connected sources conf...

CVE-2016-3609

CVE-2016-3609 affects Oracle Database Server OJVM in versions 11.2.0.4, 12.1.0.1, and 12.1.0.2. The vulnerability is described as unspecified with remote authenticated access, impacting confidentiality, integrity, and availability via unknown vectors. Affected component: OJVM. Root cause/attack v...

CVE-2016-3479

CVE-2016-3479 affects Oracle Database Server Portable Clusterware in 11.2.0.4 and 12.1.0.2. The vulnerability is described as unspecified but allows remote attackers to affect availability via unknown vectors. It is listed with CVSS v3.0 base score 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) and CV...

CVE-2016-3489

CVE-2016-3489 refers to an unspecified vulnerability in the Data Pump Import component of Oracle Database Server versions 11.2.0.4, 12.1.0.1, and 12.1.0.2. The issue is described as affecting confidentiality, integrity, and availability via unknown vectors, exploitable by local users. The connect...

CVE-2016-3489

Unspecified vulnerability in the Data Pump Import component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors...

CVE-2016-3488

CVE-2016-3488 affects Oracle Database Server 12.1.0.2, specifically the DB Sharding component. The available connected sources confirm an unspecified vulnerability that local users can impact integrity via unknown vectors. The documentation does not specify the exact root cause, affected subcompo...

CVE-2016-3448

CVE-2016-3448 is an unspecified vulnerability in the Application Express component of Oracle Database Server, affecting versions before 5.0.4. The issue allows remote, unauthenticated attackers to impact confidentiality and integrity via unknown vectors. It is listed among Oracle July 2016 CPU fi...

Unspecified Vulnerability in Oracle Database Server Application Express Component

Oracle Database Server is an object-relational database management system. It provides an open, comprehensive, and integrated approach to information management. A security vulnerability exists in the Application Express component of Oracle Database Server versions prior to 5.0.4, which can be...

Unspecified Vulnerability in Oracle Database Server Application Express Component (CNVD-2016-05186)

Oracle Database Server is an object-relational database management system. It provides an open, comprehensive, and integrated approach to information management. A security vulnerability exists in the Application Express component of Oracle Database Server versions prior to 5.0.4, which can be...

Unspecified Vulnerability in Oracle Database Server DB Sharding Component

Oracle Database Server is an object-relational database management system. It provides an open, comprehensive, and integrated approach to information management. A security vulnerability exists in the DB Sharding component of Oracle Database Server version 12.1.0.2, which can be exploited by a...

The vulnerability of the automated system for managing technological processes, SIMATIC WinCC, allows authorized users to elevate their privileges.

The vulnerability of Siemens SIMATIC WinCC software relates to errors that occur when processing a specially crafted command on the database server. Exploiting this vulnerability allows authorized users to elevate their privileges within the database...

The vulnerability of the Oracle Database Server database management system allows a malicious attacker to compromise the confidentiality and integrity of information.

The Oracle Database Server software contains a vulnerability in its kernel component. If this component is exploited, an unauthorized remote user can compromise the confidentiality and integrity of information...

The vulnerability of the Oracle Database Server database management system allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of information.

The Oracle Database Server software contains a vulnerability in its kernel component. Exploiting this vulnerability allows an unauthorized remote user to compromise the confidentiality, integrity, and accessibility of information...

Shadowd - Collection Of Tools To Detect, Record And Prevent Attacks On Web Applications

Shadow Daemon is a collection of tools to detect , record and prevent attacks on web application. Technically speaking, Shadow Daemon is a web application firewall that intercepts requests and filters out malicious parameters. It is a modular system that separates web application, analysis and...

CVE-2016-4328

MEDHOST Perioperative Information Management System aka PIMS or VPIMS before 2015R1 has hardcoded credentials, which makes it easier for remote attackers to obtain sensitive information via direct requests to the application database server...

Hardcoded credentials

MEDHOST Perioperative Information Management System aka PIMS or VPIMS before 2015R1 has hardcoded credentials, which makes it easier for remote attackers to obtain sensitive information via direct requests to the application database server...

CVE-2016-4328

MEDHOST Perioperative Information Management System aka PIMS or VPIMS before 2015R1 has hardcoded credentials, which makes it easier for remote attackers to obtain sensitive information via direct requests to the application database server...

Critical: Red Hat Security Advisory: rh-mysql56-mysql security update

An update for rh-mysql56-mysql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

[SECURITY] [DSA 3557-1] mysql-5.5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3557-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 26, 2016 https://www.debian.org/security/faq -...