CVE-2020-2791

The CVE-2020-2791 entry affects Oracle Knowledge, specifically the Information Manager Console component, in versions 8.6.0–8.6.2. The vulnerability is exploitable over HTTP without authentication, allowing an unauthenticated, network-accessible attacker to compromise Oracle Knowledge and potenti...

CVE-2020-2795

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Information Manager Console. Supported versions that are affected are 8.6.0-8.6.2. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Knowledge executes to...

CVE-2020-2795

CVE-2020-2795 affects Oracle Knowledge, Information Manager Console, versions 8.6.0–8.6.2. The vulnerability is exploitable by a high-privilege user with logon access; exploitation requires user interaction and can lead to takeover of Oracle Knowledge. The provided documents do not include a patc...

CVE-2020-2522

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Information Manager Console. Supported versions that are affected are 8.6.0-8.6.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful...

CVE-2020-2524

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: InQuira Search. Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful attacks of...

CVE-2020-2524

CVE-2020-2524 affects Oracle Knowledge’s InQuira Search in versions 8.6.0–8.6.3. An unauthenticated, network-accessible attacker via HTTP can cause a hang or frequent crash (DoS). The issue is described as difficult to exploit (high complexity) with no authentication required. Oracle’s APR 2020 C...

CVE-2020-2553

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Information Manager Console. Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successfu...

CVE-2020-2553

The CVE-2020-2553 entry describes an unauthenticated remote vulnerability in Oracle Knowledge 8.6.0–8.6.3, affecting the Information Manager Console. The issue allows network access via HTTP to perform unauthorized updates/inserts/deletes and read access to data, with confidentiality and integrit...

CVE-2020-2553

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Information Manager Console. Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successfu...

CVE-2020-2522

CVE-2020-2522 affects Oracle Knowledge, Information Manager Console (versions 8.6.0–8.6.1). The vulnerability can be exploited by an unauthenticated attacker over HTTP with network access to Oracle Knowledge, with user interaction required. Impact is unauthorized update/insert/delete of data in t...

CVE-2020-2522

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Information Manager Console. Supported versions that are affected are 8.6.0-8.6.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful...

CVE-2020-2524

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: InQuira Search. Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful attacks of...

SAP Netweaver Path Traversal Vulnerability

SAP Netweaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform provides a development and runtime environment for SAP applications. A path traversal vulnerability exists in SAP NetWeaver Knowledge Management, which results from the program...

CVE-2020-6225

SAP NetWeaver Knowledge Management, versions KMC-CM - 7.00, 7.01, 7.02, 7.30, 7.31, 7.40, 7.50 and KMC-WPC 7.30, 7.31, 7.40, 7.50, does not sufficiently validate path information provided by users, thus characters representing traverse to parent directory are passed through to the file APIs,...

CVE-2020-6225

SAP NetWeaver Knowledge Management, versions KMC-CM - 7.00, 7.01, 7.02, 7.30, 7.31, 7.40, 7.50 and KMC-WPC 7.30, 7.31, 7.40, 7.50, does not sufficiently validate path information provided by users, thus characters representing traverse to parent directory are passed through to the file APIs,...

CVE-2020-6225

SAP NetWeaver Knowledge Management vulnerability CVE-2020-6225 involves path traversal due to insufficient validation of user-supplied path information. Affected are SAP NetWeaver Knowledge Management components (KMC-CM: 7.00, 7.01, 7.02, 7.30, 7.31, 7.40, 7.50; KMC-WPC: 7.30, 7.31, 7.40, 7.50). ...

2020-04 Dynamic Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB4549949)

ComponentUpdate: A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft...

2020-04 Cumulative Update for Windows Server, version 2004 for x64-based Systems (KB4550936)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

2020-04 Cumulative Update for Windows 10 Version 1909 for ARM64-based Systems (KB4549951)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

2020-04 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB4550930)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...