EUVD-2019-12186

Malware in sbrugna...

EUVD-2020-6962

Malware in sbrugna...

CVE-2020-14826

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: SQL Extensions. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

Security Bulletin: Vulnerability in PCRE affects IBM SQL Extensions Toolkit for NPS

Summary PCRE is used by IBM SQL Extensions Toolkit for NPS. IBM SQL Extensions Toolkit for NPS has addressed the applicable CVE by upgrading PCRE to version 8.44. Vulnerability Details CVEID: CVE-2020-14155 DESCRIPTION: PCRE could allow a remote attacker to execute arbitrary code on the system,...

Security Bulletin: Vulnerability in PCRE affects IBM Netezza SQL Extensions Toolkit

Summary PCRE is used by IBM Netezza SQL Extensions Toolkit. IBM Netezza SQL Extensions Toolkit has addressed the applicable CVE by upgrading PCRE to latest version 8.44. Vulnerability Details CVEID: CVE-2020-14155 DESCRIPTION: PCRE could allow a remote attacker to execute arbitrary code on the...

CVE-2020-14826

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: SQL Extensions. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

CVE-2020-14826

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: SQL Extensions. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

Spoofing

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: SQL Extensions. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

CVE-2020-14826

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: SQL Extensions. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

CVE-2020-14826

The CVE-2020-14826 entry refers to a vulnerability in Oracle E-Business Suite, specifically the Applications Manager (component: SQL Extensions). Affected versions are 12.1.3 and 12.2.3–12.2.10. An unauthenticated attacker with network access over HTTP can potentially read data from Oracle Applic...

CVE-2020-14826

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: SQL Extensions. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

Security Bulletin: A vulnerability in Open Source Botan affects IBM Netezza SQL Extensions

Summary Open Source Botan is used by IBM Netezza SQL Extensions. IBM Netezza SQL Extensions has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2017-14737 DESCRIPTION: Botan could allow a local attacker to obtain sensitive information, caused by a flaw in the cryptographic...

Security Bulletin: IBM Netezza SQL Extensions is vulnerable to an OpenSource PCRE Vulnerability (CVE-2015-8380, CVE-2015-8382, CVE-2015-8391)

Summary The PCRE pcreexec buffer overflow vulnerabilities affect IBM Netezza SQL Extensions Toolkit. Vulnerability Details CVEID: CVE-2015-8380 DESCRIPTION: PCRE is vulnerable to a heap-based buffer overflow, caused by the improper handling of a pattern with a \01 string by the pcreexec function...

Security Bulletin: Multiple Vulnerabilities in Open Source zlib affect IBM Netezza SQL Extensions

Summary Open Source zlib is used by IBM Netezza SQL Extensions. IBM Netezza SQL Extensions has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-9840 DESCRIPTION: zlib is vulnerable to a denial of service, caused by an out-of-bounds pointer arithmetic in inftrees.c. By persuadi...

Security Bulletin: IBM Netezza SQL Extensions is vulnerable to an OpenSource PCRE Vulnerability (CVE-2016-1283, CVE-2016-3191)

Summary Open Source PCRE is used by IBM Netezza SQL Extensions. IBM Netezza SQL Extensions has addressed the applicable CVEs Vulnerability Details CVEID: CVE-2016-1283 DESCRIPTION: PCRE is vulnerable to a heap-based buffer overflow, caused by the improper handling of patterns by the pcrecompile2...

CVE-2019-2546

Vulnerability in the Oracle Applications Manager component of Oracle E-Business Suite subcomponent: SQL Extensions. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker...

Code injection

Vulnerability in the Oracle Applications Manager component of Oracle E-Business Suite subcomponent: SQL Extensions. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker...

CVE-2019-2546

CVE-2019-2546 affects Oracle E-Business Suite, specifically the Applications Manager SQL Extensions component. Affected versions include 12.1.1, 12.1.2, 12.1.3, 12.2.3–12.2.8. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Applications Manag...

CVE-2015-4846

Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality and integrity via vectors related to SQL Extensions. NOTE: the previous information is from t...

Oracle E-Business Multiple Vulnerabilities (October 2015 CPU)

The version of Oracle E-Business installed on the remote host is missing the October 2015 Oracle Critical Patch Update CPU. It is, therefore, affected by vulnerabilities in the following components : - An unspecified flaw exists in the Online Patching subcomponent in the Applications DBA. An...