Lucene search
+L

629 matches found

cvelist
cvelist
added 2025/06/09 11:52 p.m.20 views

CVE-2025-0037

In AMD Versal Adaptive SoC devices, the lack of address validation when executing PLM runtime services through the PLM firmware can allow access to isolated or protected memory spaces, resulting in the loss of integrity and confidentiality...

6.6CVSS0.00146EPSS
Exploits0References1
amd
amd
added 2025/06/03 12:0 a.m.11 views

Versal Adaptive SoC – Overwriting Protected Memory Regions through PLM Firmware

AMD ID: AMD-SB-8010 Potential Impact: Loss of confidentiality and Integrity Severity: Medium Summary In Versal™ Adaptive SoC devices, the Platform Loader and Manager PLM implements runtime post-boot software services that can allow a remote processor to command the PLM to execute cryptographic...

6.6CVSS5.8AI score0.00146EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/23 12:2 p.m.13 views

CVE-2025-21560

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: SDK-Software Development Kit. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM...

6.5CVSS6.4AI score0.00417EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 10:40 a.m.8 views

CVE-2024-37996

A vulnerability has been identified in JT Open All versions V11.5, JT2Go All versions V2406.0003, PLM XML SDK All versions V7.1.0.014, Teamcenter Visualization V14.2 All versions V14.2.0.13, Teamcenter Visualization V14.3 All versions V14.3.0.11, Teamcenter Visualization V2312 All versions...

4.8CVSS6.5AI score0.00159EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/22 10:23 p.m.7 views

CVE-2022-21467

Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain component: Attachments. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attacks of this...

6.5CVSS6.4AI score0.00883EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 9:59 p.m.7 views

CVE-2022-44575

A vulnerability has been identified in PLM Help Server V4.2 All versions. A reflected cross-site scripting XSS vulnerability exists in the web interface of the affected application that could allow an attacker to execute malicious javascript code by tricking users into accessing a malicious link...

6.1CVSS5.8AI score0.00359EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 11:22 a.m.8 views

CVE-2013-5799

Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.2 allows remote attackers to affect integrity via unknown vectors related to Security...

4.3CVSS6AI score0.00996EPSS
Exploits0References1
ossf
ossf
added 2025/05/05 5:36 p.m.5 views

Malicious code in arena-plm (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8f794e10373e988ac142e6dcebe8943efb8a623a7c9db9bee70ce592ef1e5746 Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References3
osv
osv
added 2025/05/05 5:36 p.m.2 views

MAL-2025-3611 Malicious code in arena-plm (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8f794e10373e988ac142e6dcebe8943efb8a623a7c9db9bee70ce592ef1e5746 Any computer that has this package installed or running should be considered...

7AI score
Exploits0References3
nessus
nessus
added 2025/02/27 12:0 a.m.29 views

Oracle Agile Product Lifecycle Management (PLM) 9.3.6.x < 9.3.6.26

The version of Oracle Agile Product Lifecycle Management PLM on the remote host is 9.3.6.x prior to 9.3.6.26. It is, therefore, affected by multiple vulnerabilities, including: - Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain component: Export. The supported version that is...

8.8CVSS7.1AI score0.99999EPSS
Exploits22References8
thn
thn
added 2025/02/25 4:10 a.m.37 views

Two Actively Exploited Security Flaws in Adobe and Oracle Products Flagged by CISA

The U.S. Cybersecurity and Infrastructure Security Agency CISA has added two security flaws impacting Adobe ColdFusion and Oracle Agile Product Lifecycle Management PLM to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation. The vulnerabilities in question ar...

10CVSS8.2AI score0.99571EPSS
Exploits36
cisa
cisa
added 2025/02/24 12:0 p.m.7 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2017-3066link is external Adobe ColdFusion Deserialization Vulnerability CVE-2024-20953link is external Oracle Agile Product Lifecycle Management PLM Deserializatio...

10CVSS7AI score0.90597EPSS
In wildExploits6References7
vulncheck_kev
vulncheck_kev
added 2025/02/24 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-20953

Oracle Agile Product Lifecycle Management PLM contains a deserialization vulnerability that allows a low-privileged attacker with network access via HTTP to compromise the system...

8.8CVSS7.3AI score0.03405EPSS
Exploits0References1
nessus
nessus
added 2025/02/19 12:0 a.m.9 views

Oracle Agile Product Lifecycle Management (PLM) 9.3.6.x < 9.3.6.28.3 (CVE-2024-21287)

The version of Oracle Agile Product Lifecycle Management PLM on the remote host is 9.3.6.x prior to 9.3.6.28.3. It is, therefore, affected by an unauthenticated remote file disclosure vulnerability: - Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: Softwa...

7.5CVSS8.6AI score0.01496EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/02/06 3:5 a.m.9 views

CVE-2025-21564

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: Agile Integration Services. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM...

8.1CVSS6.9AI score0.00481EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/06 2:59 a.m.10 views

CVE-2025-21565

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: Install. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Agile PLM Framework. Successful...

7.5CVSS6.6AI score0.00479EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/06 2:58 a.m.12 views

CVE-2025-21556

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: Agile Integration Services. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM...

9.9CVSS7.5AI score0.00617EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 10:47 a.m.10 views

CVE-2024-21287

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: Software Development Kit, Process Extension. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

7.5CVSS6.9AI score0.01496EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 1:23 a.m.4 views

CVE-2024-20953

Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain component: Export. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attacks of this...

8.8CVSS7.2AI score0.03405EPSS
Exploits0References1
thn
thn
added 2025/01/22 7:25 a.m.42 views

Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products

Oracle is urging customers to apply its January 2025 Critical Patch Update CPU to address 318 new security vulnerabilities spanning its products and services. The most severe of the flaws is a bug in the Oracle Agile Product Lifecycle Management PLM Framework CVE-2025-21556, CVSS score: 9.9 that...

10CVSS9.9AI score0.99654EPSS
Exploits62
Rows per page
Query Builder