CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

149 matches found

Prion•added 2018/01/18 2:29 a.m.•20 views

Design/Logic Flaw

Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Deployment. Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.2.0. Difficult to exploit vulnerability allows high privileged attacker with logon ...

3.7CVSS3.8AI score0.00142EPSS

Exploits4References4Affected Software1

CVE•added 2018/01/18 2:0 a.m.•81 views

CVE-2017-10273

CVE-2017-10273: Oracle JDeveloper in Oracle Fusion Middleware Deployment is affected by a directory traversal vulnerability. Affected versions include 11.1.1.7.0/7.1/9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.2.0. The issue allows a high-privilege attacker with logon to compromise JDeveloper, with impac...

4.7CVSS4.5AI score0.00142EPSS

Exploits4References4Affected Software1

Cvelist•added 2018/01/18 2:0 a.m.•22 views

CVE-2018-2711

Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: Security Framework. Supported versions that are affected are 11.1.1.2.4, 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network acce...

8.3AI score0.01648EPSS

Exploits0References3

Cvelist•added 2018/01/18 2:0 a.m.•22 views

CVE-2017-10273

5.2AI score0.00142EPSS

Exploits4References4

CVE•added 2018/01/18 2:0 a.m.•59 views

CVE-2018-2711

CVE-2018-2711 affects the Oracle JDeveloper component of Oracle Fusion Middleware (Security Framework). Affected versions include 11.1.1.2.4, 11.1.1.7.x, 11.1.1.9.0 and 12.1.3.0.0. An unauthenticated attacker with network access via HTTP can exploit this vulnerability to compromise JDeveloper and...

8.2CVSS8.2AI score0.01648EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2018/01/18 2:0 a.m.•21 views

CVE-2017-10273

5.7AI score0.00142EPSS

Exploits4References4

Packet Storm•added 2018/01/18 12:0 a.m.•54 views

Oracle JDeveloper IDE Directory Traversal

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/ORACLE-JDEVELOPER-DIRECTORY-TRAVERSAL.txt + ISR: apparition security Vendor: ============= www.oracle.com Product: =========== JDeveloper IDE Oracle JDeveloper is a free...

5.2AI score0.00142EPSS

Exploits4

0day.today•added 2018/01/18 12:0 a.m.•39 views

Oracle JDeveloper IDE Directory Traversal Vulnerability

Exploit for java platform in category web applications + Credits: John Page aka hyp3rlinx Vendor: ============= www.oracle.com Product: =========== JDeveloper IDE Oracle JDeveloper is a free integrated development environment that simplifies the development of Java-based applications addressing...

3.7CVSS5.2AI score0.00142EPSS

Exploits4

CNVD•added 2018/01/17 12:0 a.m.•1 views

Oracle Fusion Middleware Directory Traversal Vulnerability

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platform for enterprise and cloud environments from Oracle. The platform provides middleware, software collections, etc. Oracle JDeveloper is one of the free integrated development environment IDE components. A...

4.7CVSS6.6AI score0.00142EPSS

Exploits4References1

CNVD•added 2018/01/17 12:0 a.m.•1 views

Unspecified Vulnerability in Oracle Fusion Middleware (CNVD-2018-02267)

8.2CVSS6.8AI score0.01648EPSS

Exploits0References1

Tenable Nessus•added 2017/10/18 12:0 a.m.•92 views

Oracle JDeveloper ADF Faces Unspecified Remote Code Execution (October 2017 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by vulnerability in the Spatial Apache Groovy component of Oracle Database Server. Please see the vendor advisory for additional information. %NASLMINLEVEL 70300 C Tenable Network...

9.8CVSS8.3AI score0.24315EPSS

Exploits0References2

OSV•added 2017/01/27 10:59 p.m.•1 views

CVE-2017-3255

Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware subcomponent: ADF Faces. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker wi...

5.8CVSS5.8AI score0.00489EPSS

Exploits0References3

NVD•added 2017/01/27 10:59 p.m.•9 views

CVE-2017-3255

5.8CVSS4.8AI score0.00489EPSS

Exploits0References3

Prion•added 2017/01/27 10:59 p.m.•15 views

Design/Logic Flaw

5CVSS4.4AI score0.00489EPSS

Exploits0References3Affected Software1

CVE•added 2017/01/27 10:1 p.m.•62 views

CVE-2017-3255

CVE-2017-3255 affects Oracle JDeveloper (ADF Faces within Oracle Fusion Middleware). Affected versions include 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. The vulnerability enables unauthenticated, network-accessible information disclosure over HTTP, pot...

5.8CVSS5.2AI score0.00489EPSS

Exploits0References3Affected Software1

Cvelist•added 2017/01/27 10:1 p.m.•16 views

CVE-2017-3255

4.8AI score0.00489EPSS

Exploits0References3

Tenable Nessus•added 2017/01/20 12:0 a.m.•57 views

Oracle JDeveloper ADF Faces Unspecified Remote Information Disclosure (January 2017 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability in the Application Development Framework ADF Faces subcomponent that allows an unauthenticated, remote attacker to disclose arbitrary...

5.8CVSS6.8AI score0.00489EPSS

Exploits0References2

Tenable Nessus•added 2016/09/19 12:0 a.m.•97 views

Oracle JDeveloper Multiple RCE (July 2016 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by multiple remote code execution vulnerabilities : - A remote code execution vulnerability exists in the Application Development Framework ADF Faces subcomponent that allows an...

9.8CVSS9.4AI score0.06021EPSS

Exploits1References3

OSV•added 2016/07/21 10:12 a.m.•0 views

CVE-2016-3504

Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to ADF Faces...

9.8CVSS7.3AI score0.01607EPSS

Exploits0References4

NVD•added 2016/07/21 10:12 a.m.•19 views

CVE-2016-3504

9.8CVSS8.3AI score0.01607EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by