Oracle Identity Manager CVE-2020-2728 Remote Security Vulnerability

Description Oracle Identity Manager is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'OIM - LDAP user and role Synch' component is affected. This vulnerability affects the following supported versions: 12.2.1.3.0 Technologies Affected...

PT-2020-1520 · Oracle · Oracle Demantra Demand Management

Name of the Vulnerable Software and Affected Versions: Oracle Demantra Demand Management versions 12.2.4 through 12.2.5.1 Description: The issue is related to insufficient access control in the Security component of Oracle Demantra Demand Management, allowing a remote attacker to gain unauthorize...

Oracle Financial Services Revenue Management and Billing Remote Security Vulnerability

Description Oracle Financial Services Revenue Management and Billing is prone to a remote security vulnerability. The vulnerability can be exploited over 'HTTP' protocol. The 'File Upload' sub component is affected. This vulnerability affects the following supported versions: 2.7.0.0, 2.7.0.1,...

PT-2020-1522 · Oracle · Oracle Weblogic Server

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 10.3.6.0.0 and 12.1.3.0.0 Description: The issue is related to insufficient access control in the WLS Core Components of Oracle WebLogic Server, allowing a remote attacker to gain unauthorized access to protect...

Oracle Application Testing Suite CVE-2020-2673 Remote Security Vulnerability

Description Oracle Application Testing Suite is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Oracle Flow Builder' component is affected. This vulnerability affects the following supported versions: 12.5.0.3, 13.1.0.1, 13.2.0.1, 13.3.0...

Oracle iLearning CVE-2020-2709 Remote Security Vulnerability

Description Oracle iLearning is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Learner Pages' component is affected. This vulnerability affects the following supported versions: 6.1 Technologies Affected Oracle iLearning 6.1...

Oracle FLEXCUBE Investor Servicing cpujan2020 Multiple Security Vulnerabilities

Description Oracle FLEXCUBE Investor Servicing is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Infrastructure' sub component is affected. These vulnerabilities affect the following supported versions: 12.1.0 through 12.4.0, 14.0...

Oracle Siebel CRM Cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle Siebel CRM is prone to multiple remote security vulnerabilities. These vulnerabilities affect the 'EAI' and 'SWSE Server' components and can be exploited over the 'HTTP' protocol. These vulnerabilities affect the following supported versions: 19.10 and prior Technologies Affect...

Oracle Hospitality OPERA 5 Multiple Remote Security Vulnerabilities

Description Oracle Hospitality OPERA 5 is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Login' and 'Printing' components are affected. These vulnerabilities affect the following supported versions: 5.5 Technologies Affecte...

Oracle Outside In Technology Multiple Remote Security Vulnerabilities

Description Oracle Outside In Technology is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Outside In Filters' component is affected. These vulnerabilities affect the following supported versions: 8.5.4 Technologies Affecte...

PT-2020-1535 · Oracle · Oracle Weblogic Server

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 Description: The issue is related to inadequate access control in the Console component of Oracle WebLogic Server, allowing an unauthenticated attacker with networ...

Oracle E-Business Suite CVE-2020-2666 Remote Security Vulnerability

Description Oracle E-Business Suite is prone to a remote security vulnerability in 'Oracle Applications Framework' product. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Attachments / File Upload' component is affected. This vulnerability affects the following supported...

PT-2020-1307 · Oracle · Oracle Identity Manager

Name of the Vulnerable Software and Affected Versions: Oracle Identity Manager versions 11.1.2.3.0 through 12.2.1.3.0 Description: The issue is related to inadequate access control in the Advanced Console component of Oracle Identity Manager. It can be exploited by a remote attacker to compromise...

Oracle Primavera P6 Enterprise Project Portfolio Management Remote Security Vulnerability

Description Oracle Primavera P6 Enterprise Project Portfolio Management is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Web Access' component is affected. This vulnerability affects the following supported versions: 15.1.0.0 through...

Oracle Banking Corporate Lending cpujan2020 Multiple Security Vulnerabilities

Description Oracle Banking Corporate Lending is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Core module' component is affected. These vulnerabilities affect the following supported versions: 12.3.0 through 12.4.0, 14.0.0 throug...

Oracle Hospitality OPERA 5 CVE-2020-2677 Remote Security Vulnerability

Description Oracle Hospitality OPERA 5 is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Login' component is affected. This vulnerability affects the following supported versions: 5.5, 5.6 Technologies Affected Oracle Hospitality OPERA ...

Oracle WebLogic Server CVE-2020-6950 Remote Security Vulnerability

Description Oracle WebLogic Server is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Web Container JavaServer Faces' component is affected. This vulnerability affects the following supported versions: 12.2.1.3.0, 12.2.1.4.0 Technologies...

EulerOS 2.0 SP2 : jakarta-commons-httpclient (EulerOS-SA-2019-2397)

According to the version of the jakarta-commons-httpclient package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The Hyper-Text Transfer Protocol HTTP is perhaps the most significant protocol used on the Internet today. Web services,...

The vulnerability of the HTTP/2 network protocol implementation in the Apache HTTP Server allows a attacker to cause service failures or lead to incorrect server configuration.

The vulnerability of the HTTP/2 web server implementation in Apache HTTP Server is related to deficiencies in HTTP request processing. Exploiting this vulnerability can allow a malicious actor to cause service failures or lead to incorrect server configuration...

The vulnerability of the Exadata Plug-In Deploy and Install sub-component, as well as the Enterprise Manager for Exadata software platform of Oracle Enterprise Manager, allows a hacker to gain full control over the application.

The vulnerability of the Exadata Plug-In Deploy and Install component of the Enterprise Manager for Exadata software from Oracle involves access control deficiencies. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain full control over the application using t...