Lucene search
K

21 matches found

RedHat Linux
RedHat Linux
added 2026/04/23 4:9 p.m.10 views

openjdk: Enhance Zip file reading (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK:...

3.7CVSS7.3AI score0.00269EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/19 8:50 p.m.6 views

Security Bulletin: Communications Server (CS) for Data Center Deployment and CS for AIX are affected by: IBM SDK, Java Technology Edition Quarterly CPU - Apr 2025 - Includes Oracle April 2024 CPU plus CVE-2025-4447

Summary Communications Server CS for Data Center Deployment and CS for AIX install a local Java JRE in its product directories. This JRE is used solely for the IBM Key Manager ikeyman tool which is called by the snakeyman script used for managing the SSL key database used by the TN3270 Server and...

7.8CVSS7.5AI score0.0073EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 9:6 p.m.51 views

Security Bulletin: IBM WebSphere Business Services Fabric – Information regarding a security vulnerability in IBM SDK for Java that shipped with IBM WebSphere Application Server and addressed by Oracle CPU April 2013 (CVE-2013-0169)

Abstract Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with IBM WebSphere Application Server and is included in IBM WebSphere Business Services Fabric. Content VULNERABILITY DETAILS: DESCRIPTION: This Security Bulletin addresses the security vulnerabilities that...

10CVSS6.7AI score0.87227EPSS
Exploits23Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 9:6 p.m.52 views

Security Bulletin: IBM WebSphere Lombardi Edition – Information regarding security vulnerability in IBM SDK for Java that shipped with IBM WebSphere Application Server and addressed by Oracle CPU April 2013 (CVE-2013-0169)

Abstract Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with IBM WebSphere Application Server and is included in IBM WebSphere Lombardi Edition. Content VULNERABILITY DETAILS: DESCRIPTION: This Security Bulletin addresses the security vulnerabilities that have...

10CVSS6.9AI score0.87227EPSS
Exploits23Affected Software1
0day.today
0day.today
added 2017/05/20 12:0 a.m.96 views

Oracle PeopleSoft - Server-Side Request Forgery Vulnerability

Exploit for java platform in category web applications Application: Oracle PeopleSoft Versions Affected: ToolsRelease: 8.55.03; ToolsReleaseDB: 8.55; PeopleSoft HCM 9.2 Vendor URL: http://oracle.com Bugs: SSRF Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017...

6.4CVSS6.8AI score0.09636EPSS
Exploits5
seebug.org
seebug.org
added 2017/05/11 12:0 a.m.66 views

Oracle PeopleSoft HCM 9.2 XXE Injection

Application: Oracle PeopleSoft Versions Affected: PeopleSoft HCM 9.2 on PeopleTools 8.55 Vendor URL: http://oracle.com Bug: XXE Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017 Author: Nadya Krivdyuk ERPScan Description 1...

6.4CVSS6.7AI score0.25832EPSS
Exploits9
0day.today
0day.today
added 2017/04/25 12:0 a.m.254 views

Oracle E-Business Suite 12.2.3 - IESFOOTPRINT SQL Injection Vulnerability

Exploit for jsp platform in category web applications Application: Oracle E-Business Suite Versions Affected: Oracle EBS 12.2.3 Vendor URL: http://oracle.com Bug: SQL injection Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017...

7.5CVSS0.3AI score0.15784EPSS
Exploits5
exploitpack
exploitpack
added 2017/04/25 12:0 a.m.76 views

Oracle PeopleSoft - PeopleSoftServiceListeningConnector XML External Entity via DOCTYPE

Oracle PeopleSoft - PeopleSoftServiceListeningConnector XML External Entity via DOCTYPE Application: Oracle PeopleSoft Versions Affected: PeopleSoft HCM 9.2 on PeopleTools 8.55 Vendor URL: http://oracle.com Bug: XXE Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory:...

6.4CVSS0.1AI score0.25832EPSS
Exploits9
0day.today
0day.today
added 2017/04/20 12:0 a.m.82 views

Oracle PeopleSoft ToolsRelease / ToolsReleaseDB / HCM SSRF Vulnerabilities

Oracle PeopleSoft ToolsRelease version 8.55.03, ToolsReleaseDB version 8.55, and HCM version 9.2 suffer from a server-side request forgery vulnerability. Application: Oracle PeopleSoft Versions Affected: ToolsRelease: 8.55.03; ToolsReleaseDB: 8.55; PeopleSoft HCM 9.2 Vendor URL: http://oracle.com...

6.4CVSS6.9AI score0.09636EPSS
Exploits5
0day.today
0day.today
added 2017/04/20 12:0 a.m.90 views

Oracle PeopleSoft HCM 9.2 XXE Injection Vulnerability

Exploit for windows platform in category remote exploits Application: Oracle PeopleSoft Versions Affected: PeopleSoft HCM 9.2 on PeopleTools 8.55 Vendor URL: http://oracle.com Bug: XXE Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April...

6.4CVSS6.8AI score0.25832EPSS
Exploits9
Packet Storm
Packet Storm
added 2017/04/20 12:0 a.m.382 views

Oracle PeopleSoft HCM 9.2 XXE Injection

Application: Oracle PeopleSoft Versions Affected: PeopleSoft HCM 9.2 on PeopleTools 8.55 Vendor URL: http://oracle.com Bug: XXE Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017 Author: Nadya Krivdyuk ERPScan Description 1...

6.7AI score0.25832EPSS
Exploits9
Packet Storm
Packet Storm
added 2017/04/20 12:0 a.m.178 views

Oracle E-Business Suite 12.2.3 SQL Injection

Application: Oracle E-Business Suite Versions Affected: Oracle EBS 12.2.3 Vendor URL: http://oracle.com Bug: SQL injection Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017 Author: Dmitry Chastuhin ERPScan Description 1. ADVISORY...

0.15784EPSS
Exploits5
erpscan
erpscan
added 2016/12/23 12:0 a.m.522 views

DoS in Oracle E-Business Suite ANONYMOUSLOGIN

Application: Oracle E-Business Suite Versions Affected: Oracle E-Business Suite 12.2.3 Vendor: Oracle Bugs: DoS Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017 Authors: Alexey Tyurin ERPScan, Ivan Chalykin ERPScan VULNERABILITY...

5CVSS0.6AI score0.02574EPSS
Exploits0
erpscan
erpscan
added 2016/12/23 12:0 a.m.549 views

XXE VIA DOCTYPE in PeopleSoft

Application: Oracle PeopleSoft Versions Affected: PeopleSoft HCM 9.2 on PeopleTools 8.55 Vendor: Oracle Bugs: XXE Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017 Authors: Nadya Krivdyuk ERPScan VULNERABILITY INFORMATION Class:...

6.4CVSS1.1AI score0.25832EPSS
Exploits9
erpscan
erpscan
added 2016/12/23 12:0 a.m.673 views

SSRF in PeopleSoft IMServlet

Application: Oracle PeopleSoft Versions Affected: ToolsRelease: 8.55.03; ToolsReleaseDB: 8.55; PeopleSoft HCM 9.2 Vendor: Oracle Bugs: SSRF Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017 Authors: Roman Shalymov ERPScan...

6.4CVSS0.6AI score0.09636EPSS
Exploits5
erpscan
erpscan
added 2016/12/23 12:0 a.m.637 views

XSS - Oracle E-Business Suite JTFFMPRINTSERVER

Application: Oracle E-Business Suite Versions Affected: Oracle E-Business Suite 12.2.3 Vendor: Oracle Bugs: XSS Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017 Authors: Ivan Chalykin ERPScan VULNERABILITY INFORMATION Class: XSS...

7.8CVSS0.8AI score0.01731EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2013/04/17 6:33 p.m.3 views

OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability v...

7.6CVSS6.7AI score0.05724EPSS
Exploits0References4
seebug.org
seebug.org
added 2009/04/17 12:0 a.m.50 views

Oracle APEX 3.2 Unprivileged DB users can see APEX password hashes

No description provided by source. Unprivileged DB users can see APEX password hashes in FLOWS030000.WWVFLOWUSER CVE-2009-0981 Name Unprivileged DB users can see APEX password hashes in FLOWS030000.WWVFLOWUSER CVE-2009-0981 Systems Affected APEX 3.0 optional component of 11.1.0.7 installation...

4CVSS6.5AI score0.05281EPSS
Exploits6
exploitpack
exploitpack
added 2009/04/16 12:0 a.m.53 views

Oracle APEX 3.2 - Unprivileged DB users can see APEX Password hashes

Oracle APEX 3.2 - Unprivileged DB users can see APEX Password hashes Unprivileged DB users can see APEX password hashes in FLOWS030000.WWVFLOWUSER CVE-2009-0981 Name Unprivileged DB users can see APEX password hashes in FLOWS030000.WWVFLOWUSER CVE-2009-0981 Systems Affected APEX 3.0 optional...

4CVSS0.4AI score0.05281EPSS
Exploits6
0day.today
0day.today
added 2009/04/16 12:0 a.m.78 views

Oracle APEX 3.2 Unprivileged DB users can see APEX password hashes

Exploit for multiple platform in category local exploits ================================================================== Oracle APEX 3.2 Unprivileged DB users can see APEX password hashes ================================================================== Unprivileged DB users can see APEX...

6.9AI score0.05281EPSS
Exploits6
Rows per page
Query Builder