PT-2023-14632 · Unknown · Livebox Collaboration Vdesk

Name of the Vulnerable Software and Affected Versions: LIVEBOX Collaboration vDesk versions through v018 Description: An issue exists due to Broken Access Control under the "/api/v1/vdesk DOMAIN/export" endpoint. A malicious user, authenticated to the product without any specific privilege, can u...

Oracle Database Server CVE-2020-2518 Remote Security Vulnerability

Description Oracle Database Server is prone to a remote security vulnerability. The vulnerability can be exploited over multiple protocols. The 'Java VM' component is affected. This vulnerability affects the following supported versions: 11.2.0.4, 18c and 19c. Technologies Affected Oracle Databas...

Oracle Siebel CRM Cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle Siebel CRM is prone to multiple remote security vulnerabilities. These vulnerabilities affect the 'EAI' and 'SWSE Server' components and can be exploited over the 'HTTP' protocol. These vulnerabilities affect the following supported versions: 19.10 and prior Technologies Affect...

FasterXML Jackson-databind CVE-2019-14540 Information Disclosure Vulnerability

Description FasterXML Jackson-databind is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain sensitive information that may aid in further attacks. FasterXML jackson-databind versions prior to 2.9.10 are vulnerable. Technologies Affected FasterXML...

Oracle Financial Services Analytical Applications Infrastructure Remote Security Vulnerability

Description Oracle Financial Services Analytical Applications Infrastructure is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Object Migration' component is affected. This vulnerability affects the following supported versions: 8.0.4...

Oracle Java SE/Java SE Embedded CVE-2020-2601 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over 'Kerberos' protocol. This issue affects the 'Security' component. This vulnerability affects the following supported versions: Java SE: 7u241, 8u231, 11.0.5, 13.0....

SAP Disclosure Management CVE-2020-6303 Input Validation Security Vulnerability

Description SAP Disclosure Management is prone to a security vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to obtain sensitive information, access or modify data within the context of the affected application; this may aid in further...

Oracle Application Testing Suite CVE-2020-2673 Remote Security Vulnerability

Description Oracle Application Testing Suite is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Oracle Flow Builder' component is affected. This vulnerability affects the following supported versions: 12.5.0.3, 13.1.0.1, 13.2.0.1, 13.3.0...

Oracle Database Server CVE-2020-2569 Local Security Vulnerability

Description Oracle Database Server is prone to a local security vulnerability that exists in Oracle Applications DBA. The vulnerability can be exploited over the 'Local Logon' protocol. For an exploit to succeed, the attacker must have 'Local Logon' privilege. This vulnerability affects the...

Oracle WebLogic Server CVE-2020-6950 Remote Security Vulnerability

Description Oracle WebLogic Server is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Web Container JavaServer Faces' component is affected. This vulnerability affects the following supported versions: 12.2.1.3.0, 12.2.1.4.0 Technologies...

Oracle FLEXCUBE Investor Servicing cpujan2020 Multiple Security Vulnerabilities

Description Oracle FLEXCUBE Investor Servicing is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Infrastructure' sub component is affected. These vulnerabilities affect the following supported versions: 12.1.0 through 12.4.0, 14.0...

Oracle Banking Corporate Lending cpujan2020 Multiple Security Vulnerabilities

Description Oracle Banking Corporate Lending is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Core module' component is affected. These vulnerabilities affect the following supported versions: 12.3.0 through 12.4.0, 14.0.0 throug...

Oracle PeopleSoft Enterprise CC Common Application Objects Remote Security Vulnerability

Description Oracle PeopleSoft Enterprise CC Common Application Objects is prone to a remote vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Approval Framework' component is affected. This vulnerability affects the following supported versions: 9.1, 9.2 Technologie...

Oracle PeopleSoft Enterprise HCM Human Resources CVE-2020-2561 Remote Security Vulnerability

Description Oracle PeopleSoft Enterprise HCM Human Resources is prone to a remote security vulnerability. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Company Dir / Org Chart Viewer' component is affected. These vulnerabilities affect the following supported versions: 9.2...

Microsoft Excel CVE-2020-0650 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

Oracle Primavera P6 Enterprise Project Portfolio Management Remote Security Vulnerability

Description Oracle Primavera P6 Enterprise Project Portfolio Management is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Web Access' component is affected. This vulnerability affects the following supported versions: 15.1.0.0 through...

Oracle MySQL Client cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle MySQL Client is prone to multiple remote security vulnerabilities in 'C API' component. These vulnerabilities can be exploited over the 'MySQL' protocol. These vulnerabilities affect the following supported versions: 5.7.28 and prior, 8.0.18 and prior Technologies Affected Orac...

Oracle E-Business Suite cpujan2020 Multiple Security Vulnerabilities

Description Oracle E-Business Suite is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'HTTPS' protocol. The 'Message Display', 'Shopping Cart', 'Others', 'Call Phone Number Page', 'Wireless' components are affected. These vulnerabilities affect the followi...

Oracle Enterprise Manager Base Platform cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle Enterprise Manager Base Platform is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over HTTP protocol. The 'Enterprise Config Management', 'Application Service Level Mgmt, 'Cloud Control Manager - OMS', 'Configuration Standard...

Oracle E-Business Suite cpujan2020 Multiple Security Vulnerabilities

Description Oracle E-Business Suite is prone to multiple security vulnerabilities in 'Human Resources' product. These vulnerabilities affect the following supported versions: 12.1.1 through 12.1.3, 12.2.3 through 12.2.9 Technologies Affected Oracle E-Business Suite 12.1.1 Oracle E-Business Suite...