Lucene search
K

4655 matches found

BDU FSTEC
BDU FSTEC
added 2020/02/11 12:0 a.m.5 views

The vulnerability of the Analytics Server component of the Oracle Business Intelligence Enterprise Edition allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Analytics Server component of the Oracle Business Intelligence Enterprise Edition software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

4.7CVSS5.9AI score0.01357EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2020/02/06 8:34 a.m.3 views

undertow: possible Denial Of Service (DOS) in Undertow HTTP server listening on HTTPS

A vulnerability was found in the Undertow HTTP server listening on HTTPS. An attacker can target the HTTPS port to carry out a Denial Of Service DOS to make the service unavailable on SSL...

7.5CVSS5.8AI score0.0212EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.7 views

The vulnerability of the Security component of the Oracle Retail Customer Management and Segmentation Foundation software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Security component of the Oracle Retail Customer Management and Segmentation Foundation software is related to access control deficiencies. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information using the HTTP protocol...

4.9CVSS6AI score0.007EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.9 views

The vulnerability of the Extensibility Framework component of the Enterprise Manager Base Platform allows a perpetrator to gain access to modify, add, or delete data, to gain unauthorized access to protected information, or to cause service failures.

The vulnerability of the Extensibility Framework component of the Enterprise Manager Base Platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized access to protected...

8CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.6 views

The vulnerability of the PIA Core Technology component of the PeopleSoft Enterprise PeopleTools business application suite allows a hacker to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the PIA Core Technology component in the PeopleSoft Enterprise PeopleTools business application suite is related to access control deficiencies. Exploiting this vulnerability could allow an attacker to gain access to modify, add, or delete data, or to unauthorizedly access...

6.4CVSS6.7AI score0.01208EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.7 views

The vulnerability of the Application Service component of the software for working with Oracle Web Applications Desktop Integrator allows a perpetrator to gain access to modify, add, or delete data, or to gain unauthorized access to protected information.

The vulnerability of the Application Service component of the Oracle Web Applications Desktop Integrator software relates to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to modify, add, or delete data using the HTTPS...

8.5CVSS7.4AI score0.01314EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.5 views

The vulnerability of the Tree Manager component in the PeopleSoft Enterprise PeopleTools business application suite allows a hacker to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Tree Manager component in the PeopleSoft Enterprise PeopleTools business application has defects related to access control. Exploiting this vulnerability could allow an attacker to modify, add, or delete data, or gain unauthorized access to protected information using the...

6.1CVSS6.7AI score0.01162EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.4 views

The vulnerability of the Global EM Framework component of the Enterprise Manager Base Platform allows a perpetrator to gain access to modify, add, or delete data, to gain unauthorized access to protected information, or to cause service failures.

The vulnerability of the Global EM Framework component of the Enterprise Manager Base Platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized access to protected information...

8CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.5 views

The vulnerability of the Enterprise Config Management component of the Enterprise Manager Base Platform allows a malicious individual to gain access to modify, add, or delete data, to gain unauthorized access to protected information, or to cause service failures.

The vulnerability of the Enterprise Config Management component of the Enterprise Manager Base Platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized access to protected...

8CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.7 views

The vulnerability of the System Monitoring component of the Enterprise Manager Base Platform allows a perpetrator to gain access to modify, add, or delete data, to unauthorizedly access protected information, or to cause service failures.

The vulnerability of the System Monitoring component of the Enterprise Manager Base Platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized access to protected information, ...

8CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.5 views

The vulnerability of the Security component of the Oracle AutoVue data visualization application, which allows a perpetrator to gain unauthorized access to protected information

The vulnerability of the Security component of the Oracle AutoVue data visualization application relates to the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information through the HTTP...

5.3CVSS6.3AI score0.01331EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.5 views

The vulnerability of the Job System component of the Enterprise Manager Base Platform allows a perpetrator to gain access to modify, add, or delete data, to obtain unauthorized access to protected information, or to cause service failures.

The vulnerability of the Job System component of the Enterprise Manager Base Platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized access to protected information, or caus...

8CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2020/02/04 7:25 p.m.3 views

HTTP/2: flood using PING frames results in unbounded memory growth

A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.83433EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2020/02/04 7:25 p.m.2 views

HTTP/2: flood using HEADERS frames results in unbounded memory growth

A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RSTSTREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.82813EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.4 views

The vulnerability of the Oracle iSupport web application allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Oracle iSupport web application relates to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to modify, add, or delete data, or to unauthorizedly access protected information using the HTTPS protocol...

8.2CVSS7.4AI score0.01314EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.4 views

The vulnerability of the Enterprise Manager Base Platform (Job System) component of the Oracle Enterprise Manager software allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Enterprise Manager Base Platform Job System component of the Oracle Enterprise Manager software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information or...

8CVSS6.6AI score0.01159EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.6 views

The vulnerability of the Enterprise Manager Base Platform (Host Management) component of the Oracle Enterprise Manager software allows a malicious individual to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Enterprise Manager Base Platform Host Management component of the Oracle Enterprise Manager software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected...

8CVSS6.6AI score0.01159EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.3 views

The vulnerability of the Enterprise Manager for Oracle Database (Target Management) component of the Oracle Enterprise Manager software platform allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Enterprise Manager for Oracle Database Target Management software component of the Oracle Enterprise Manager is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information or...

8CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/01/27 12:0 a.m.7 views

The vulnerability of the Core component of the Oracle Banking Corporate Lending software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Core component of the Oracle Banking Corporate Lending software lies in its lack of access control mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using the HTTP protocol...

6.8CVSS6.8AI score0.01321EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/01/27 12:0 a.m.6 views

The vulnerability of the Core component of the real-time payment processing software in Oracle Banking Payments allows a perpetrator to gain unauthorized access and modify data.

The vulnerability of the Core component of the real-time payment processing software in Oracle Banking Payments is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to read, modify, add, or delet...

5.8CVSS6.3AI score0.01002EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder