Microsoft Windows Search Indexer CVE-2020-0629 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

Microsoft Windows Win32k CVE-2020-0608 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

Microsoft Windows CVE-2020-0616 Denial of Service Vulnerability

Description Microsoft Windows is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1809 for 32-bit Systems Microsoft Windows 10 Version 1809 for ARM64-based Systems Microsoft...

Microsoft Windows CVE-2020-0621 Security Bypass Vulnerability

Description Microsoft Windows is prone to a security bypass vulnerability. Successfully exploiting this issue may allow attackers to bypass certain security restrictions and perform unauthorized actions. This may lead to other attacks. Technologies Affected Microsoft Windows 10 Version 1709 for...

Oracle E-Business Suite cpujan2020 Multiple Security Vulnerabilities

Description Oracle E-Business Suite is prone to multiple security vulnerabilities in 'Human Resources' product. These vulnerabilities affect the following supported versions: 12.1.1 through 12.1.3, 12.2.3 through 12.2.9 Technologies Affected Oracle E-Business Suite 12.1.1 Oracle E-Business Suite...

Oracle E-Business Suite cpujan2020 Multiple Security Vulnerabilities

Description Oracle E-Business Suite is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'HTTPS' protocol. The 'Preferences', 'Message Hooks', 'Attachments / File Upload' components are affected. These vulnerabilities affect the following supported versions:...

Oracle Database Server CVE-2020-2731 Local Security Vulnerability

Description Oracle Database Server is prone to a local security vulnerability. The vulnerability can be exploited over the 'Local Logon' protocol. The 'Core RDBMS' component is affected. This vulnerability affects the following supported versions: 12.1.0.2, 12.2.0.1, 18c and 19c Technologies...

Oracle Banking Payments cpujan2020 Multiple Security Vulnerabilities

Description Oracle Banking Payments is prone to multiple security vulnerabilities. The vulnerability can be exploited over the 'HTTP' protocol. The 'Payments Core' component is affected. These vulnerabilities affect the following supported versions: 14.1.0 through 14.3.0 Technologies Affected...

Oracle Database Server CVE-2020-2568 Local Security Vulnerability

Description Oracle Database Server is prone to a local security vulnerability that exists in Oracle Applications DBA. The vulnerability can be exploited over the 'Local Logon' protocol. For an exploit to succeed, the attacker must have 'Local Logon' privilege. This vulnerability affects the...

Oracle Database Server CVE-2020-2569 Local Security Vulnerability

Description Oracle Database Server is prone to a local security vulnerability that exists in Oracle Applications DBA. The vulnerability can be exploited over the 'Local Logon' protocol. For an exploit to succeed, the attacker must have 'Local Logon' privilege. This vulnerability affects the...

Oracle WebLogic Server CVE-2020-6950 Remote Security Vulnerability

Description Oracle WebLogic Server is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Web Container JavaServer Faces' component is affected. This vulnerability affects the following supported versions: 12.2.1.3.0, 12.2.1.4.0 Technologies...

Oracle E-Business Suite cpujan2020 Multiple Security Vulnerabilities

Description Oracle E-Business Suite is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'HTTPS' protocol. The 'Message Display', 'Shopping Cart', 'Others', 'Call Phone Number Page', 'Wireless' components are affected. These vulnerabilities affect the followi...

Oracle FLEXCUBE Investor Servicing cpujan2020 Multiple Security Vulnerabilities

Description Oracle FLEXCUBE Investor Servicing is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Infrastructure' sub component is affected. These vulnerabilities affect the following supported versions: 12.1.0 through 12.4.0, 14.0...

Oracle VM VirtualBox Cpujan2020 Multiple Local Security Vulnerabilities

Description Oracle VM VirtualBox is prone to multiple local security vulnerabilities in the 'Core' component. An attacker can exploit these issues to perform unauthorized actions. This may aid in launching further attacks. These vulnerabilities affect the following supported versions: Prior to...

Oracle Banking Corporate Lending cpujan2020 Multiple Security Vulnerabilities

Description Oracle Banking Corporate Lending is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Core module' component is affected. These vulnerabilities affect the following supported versions: 12.3.0 through 12.4.0, 14.0.0 throug...

Oracle Business Intelligence Enterprise Edition Multiple Remote Security Vulnerabilities

Description Oracle Business Intelligence Enterprise Edition is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Analytics Actions', 'BI Platform Security' and 'Analytics Server' components are affected. These vulnerabilities...

Oracle Retail Customer Management and Segmentation Foundation Remote Security Vulnerability

Description Oracle Retail Customer Management and Segmentation Foundation is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Security' component is affected. This vulnerability affects the following supported versions: 18.0 Technologies...

Oracle Retail Customer Management and Segmentation Foundation Multiple Security Vulnerabilities

Description Oracle Retail Customer Management and Segmentation Foundation is prone to multiple security vulnerabilities. The 'Internal Operations' component is affected. These vulnerabilities affect the following supported versions: 16.0 Technologies Affected Oracle Retail Customer Management and...

Oracle PeopleSoft Enterprise CC Common Application Objects Remote Security Vulnerability

Description Oracle PeopleSoft Enterprise CC Common Application Objects is prone to a remote vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Approval Framework' component is affected. This vulnerability affects the following supported versions: 9.1, 9.2 Technologie...

Oracle PeopleSoft Enterprise HCM Human Resources CVE-2020-2561 Remote Security Vulnerability

Description Oracle PeopleSoft Enterprise HCM Human Resources is prone to a remote security vulnerability. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Company Dir / Org Chart Viewer' component is affected. These vulnerabilities affect the following supported versions: 9.2...

Oracle Solaris CVE-2020-2696 Local Security Vulnerability

Description Oracle Solaris is prone to a local security vulnerability. This issue affects the 'Common Desktop Environment' component. This vulnerability affects the following supported version: 10 Technologies Affected Oracle Solaris 10 Recommendations Permit local access for trusted individuals...

Oracle Solaris cpujan2020 Multiple Local Security Vulnerabilities

Description Oracle Solaris is prone to multiple local security vulnerabilities. These vulnerabilities affect the following supported versions: 11 Technologies Affected Oracle Solaris 11 Recommendations Permit local access for trusted individuals only. Where possible, use restricted environments a...

Oracle MySQL Server cpujan2020 Multiple Security Vulnerabilities

Description Oracle MySQL Server is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'MySQL Protocol' protocol. The 'Server: Optimizer', 'Server: Parser', 'Server: DML', and 'Server: Information Schema' components are affected. These vulnerabilities affect th...

Oracle VM Server for SPARC CVE-2020-2571 Local Security Vulnerability

Description Oracle VM Server for SPARC is prone to a local security vulnerability. The 'Templates' component is affected. This vulnerability affects the following supported versions: Oracle VM Server for SPARC 3.6 Technologies Affected Oracle VM Server for SPARC 3.6 Recommendations Permit local...

Microsoft Windows Common Log File System CVE-2020-0615 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Versio...

Oracle Enterprise Manager Base Platform cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle Enterprise Manager Base Platform is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over HTTP protocol. The 'Enterprise Config Management', 'Application Service Level Mgmt, 'Cloud Control Manager - OMS', 'Configuration Standard...

Microsoft Windows Search Indexer CVE-2020-0613 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

Microsoft Windows Search Indexer CVE-2020-0625 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

Microsoft Excel CVE-2020-0650 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

Oracle Identity Manager CVE-2020-2729 Remote Security Vulnerability

Description Oracle Identity Manager is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Advanced Console' component is affected. This vulnerability affects the following supported versions: 11.1.2.3.0, 12.2.1.3.0 Technologies Affected...

Oracle Database Server cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle Database Server is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over 'OracleNet' protocol. The 'Database Gateway for ODBC' component is affected. These vulnerabilities affect the following supported versions: 11.2.0.4, 12.1.0.2,...

Oracle Primavera P6 Enterprise Project Portfolio Management Remote Security Vulnerability

Description Oracle Primavera P6 Enterprise Project Portfolio Management is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Web Access' component is affected. This vulnerability affects the following supported versions: 15.1.0.0 through...

Oracle MySQL Client cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle MySQL Client is prone to multiple remote security vulnerabilities in 'C API' component. These vulnerabilities can be exploited over the 'MySQL' protocol. These vulnerabilities affect the following supported versions: 5.7.28 and prior, 8.0.18 and prior Technologies Affected Orac...

Oracle iLearning CVE-2020-2709 Remote Security Vulnerability

Description Oracle iLearning is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Learner Pages' component is affected. This vulnerability affects the following supported versions: 6.1 Technologies Affected Oracle iLearning 6.1...

SAP NetWeaver Internet Communication Manager CVE-2020-6304 Denial of Service Vulnerability

Description SAP Netweaver is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Technologies Affected SAP Internet Communication Manager ICM SAP NetWeaver 7.21 SAP NetWeaver 7.22 SAP NetWeaver 7.49 SAP NetWeaver 7.53 Recommendatio...

Oracle Java SE CVE-2020-2654 Remote Security Vulnerability

Description Oracle Java SE is prone to a remote security vulnerability. The vulnerability can be exploited over multiple protocols. This issue affects the 'Libraries' component. This vulnerability affects the following supported versions: Java SE: 7u241, 8u231, 11.0.5, 13.0.1 Technologies Affecte...

Oracle FLEXCUBE Universal Banking cpujan2020 Multiple Security Vulnerabilities

Description Oracle FLEXCUBE Universal Banking is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Infrastructure' component is affected. These vulnerabilities affect the following supported versions: 12.0.1 through 12.4.0, 14.0.0...

Microsoft Windows Search Indexer CVE-2020-0626 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

FasterXML Jackson-databind CVE-2019-14540 Information Disclosure Vulnerability

Description FasterXML Jackson-databind is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain sensitive information that may aid in further attacks. FasterXML jackson-databind versions prior to 2.9.10 are vulnerable. Technologies Affected FasterXML...

Oracle MySQL Server cpujan2020 Multiple Security Vulnerabilities

Description Oracle MySQL Server is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'MySQL Protocol' protocol. The 'InnoDB', 'Server: Optimizer', 'Server: Options', and 'Server: Audit Plugin' components are affected. These vulnerabilities affect the followin...

Microsoft Windows Win32k CVE-2020-0642 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

Oracle GraalVM Enterprise Edition CVE-2020-2595 Remote Security Vulnerability

Description Oracle GraalVM Enterprise Edition is prone to a remote security vulnerability. This vulnerability can be exploited over the 'Multiple' protocols. The 'GraalVM Compiler' component is affected. This vulnerability affects the following supported versions: 19.3.0.2 Technologies Affected...

Microsoft Windows Remote Desktop Web Access CVE-2020-0637 Information Disclosure Vulnerability

Description Microsoft Windows Remote Desktop Web Access is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows Server 2008 R2 for x64-based Systems SP1...

Microsoft Windows Search Indexer CVE-2020-0631 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

Oracle Enterprise Manager for Fusion Middleware CVE-2020-2614 Remote Security Vulnerability

Description Oracle Enterprise Manager for Fusion Middleware is prone to a remote security vulnerability. The vulnerability can be exploited over 'HTTP' protocol. The 'APM Mesh' component is affected. This vulnerability affects the following supported versions: 13.2, 13.3 Technologies Affected...

Oracle WebCenter Sites Multiple Remote Security Vulnerabilities

Description Oracle WebCenter Sites is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Advanced UI' component is affected. These vulnerabilities affect the following supported versions: 12.2.1.3.0 Technologies Affected Oracle...

Oracle Java SE/Java SE Embedded CVE-2020-2590 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over 'Kerberos' protocol. This issue affects the 'Security' component. This vulnerability affects the following supported versions: Java SE: 7u241, 8u231, 11.0.5, 13.0....

Oracle Java SE/Java SE Embedded CVE-2020-2593 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over multiple protocols. This issue affects the 'Networking' component. This vulnerability affects the following supported versions: Java SE: 7u241, 8u231, 11.0.5,...

Microsoft Internet Explorer CVE-2020-0640 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Internet Explor...

Microsoft Office Online CVE-2020-0647 Spoofing Vulnerability

Description Microsoft Office Online is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected Microsoft Office...