28 matches found
VulnCheck KEV: CVE-2019-2768
Vulnerability in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
VulnCheck KEV: CVE-2019-2588
Vulnerability in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows high privileged attacker with network...
CVE-2021-2480
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful...
Oracle HTTP Server Unauthorized Access Vulnerability (CNVD-2021-102412)
Oracle HTTP Server is a web server component of Oracle Fusion Middleware. an unauthorized access vulnerability exists in the Web Listener component of Oracle HTTP Server version 11.1.1.9.0. A successful attack could result in unauthorized update, insert, or delete access to certain Oracle HTTP...
Oracle HTTP Server 输入验证错误漏洞
Oracle HTTP Server is a web server component of Oracle Fusion Middleware. an unauthorized access vulnerability exists in the Web Listener component of Oracle HTTP Server version 11.1.1.9.0. A successful attack could result in unauthorized update, insert, or delete access to certain Oracle HTTP...
CVE-2020-14723
Vulnerability in the Oracle Help Technologies product of Oracle Fusion Middleware component: Web UIX. Supported versions that are affected are 11.1.1.9.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Help...
CVE-2020-14530
Vulnerability in the Oracle Security Service product of Oracle Fusion Middleware component: None. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Security Service. Successfu...
Buffer overflow
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware component: Analytics Actions. Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with...
CVE-2020-2952
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful...
Oracle BI Publisher Unauthorized Access Vulnerability (CNVD-2019-37409)
Oracle BI Publisher is a reporting solution that makes it easier and faster than traditional reporting tools to produce, manage and deliver all reports and documents. A security vulnerability exists in the BI Publisher Security component in Oracle BI Publisher 11.1.1.9.0, 12.2.1.3.0, 12.2.1.4.0. ...
Oracle BI Publisher Multiple Remote Security Vulnerabilities
Description Oracle BI Publisher is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Mobile Service' and 'BI Publisher Security' components are affected. These vulnerabilities affect the following supported versions: 11.1.1.9....
CVE-2019-2771
Vulnerability in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. Supported versions that are affected are 11.1.1.9.0 and 12.2.1.3.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
Oracle Fusion Middleware BI Publisher Component Information Disclosure Vulnerability
Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's Oracle business innovation platform for enterprise and cloud environments. The platform provides middleware, software collection and other functions. BI Publisher formerly known as XML Publisher is one of the reporting...
Oracle BI Publisher Component Access Control Error Vulnerability
Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's Oracle business innovation platform for enterprise and cloud environments. The platform provides middleware, software collection and other functions. BI Publisher formerly known as XML Publisher is one of the reporting...
Oracle BI Publisher Component Access Control Error Vulnerability (CNVD-2019-29188)
Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's Oracle business innovation platform for enterprise and cloud environments. The platform provides middleware, software collection and other functions. BI Publisher formerly known as XML Publisher is one of the reporting...
CVE-2019-2706
Vulnerability in the Oracle Business Process Management Suite component of Oracle Fusion Middleware subcomponent: BPM Foundation Services. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
Oracle Business Intelligence 11.1.1.9.0 / 12.2.1.3.0 / 12.2.1.4.0 - Directory Traversal
Exploit Title: Directory traversal in Oracle Business Intelligence Date: 16.04.19 Exploit Author: @vah13 Vendor Homepage: http://oracle.com Software Link: https://www.oracle.com/technetwork/middleware/bi-enterprise-edition/downloads/index.html Version: 11.1.1.9.0, 12.2.1.3.0, 12.2.1.4.0 Tested on...
CVE-2019-2427
Vulnerability in the Oracle WebCenter Portal component of Oracle Fusion Middleware subcomponent: WebCenter Spaces Application. Supported versions that are affected are 11.1.1.9.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
CVE-2018-3253
Vulnerability in the Oracle Virtual Directory component of Oracle Fusion Middleware subcomponent: Virtual Directory Manager. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2017-10034
Vulnerability in the Oracle BI Publisher component of Oracle Fusion Middleware subcomponent: Core Formatting API. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle ...