Oracle Java SE CVE-2019-2999 Remote Security Vulnerability

Description Oracle Java SE is prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Javadoc' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13 Technologies Affected Orac...

Adobe Acrobat and Reader Use After Free Multiple Arbitrary Code Execution Vulnerabilities

Description Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities . Successfully exploiting these issues allow attackers to execute arbitrary code in the context of current user running the affected application. Failed exploits will result in denial-of-service...

TYPO3 Direct Mail Extension CVE-2019-16698 Information Disclosure Vulnerability

Description Direct Mail Extension for TYPO3 is prone to an information-disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. dkd Direct Mail Extension versions prior to 5.2.3 are vulnerable. Technologies Affected dkd...

Oracle Java SE/Java SE Embedded CVE-2019-2973 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'JAXP' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13; Java S...

Oracle Hospitality Reporting and Analytics Multiple Remote Security Vulnerabilities

Description Oracle Hospitality Reporting and Analytics is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Admin - Configuration' and 'Inventory Integration' packages are affected. These vulnerabilities affect the following...

Oracle WebLogic Server CVE-2019-2889 Remote Security Vulnerability

Description Oracle WebLogic Server is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Sample apps' component is affected. This vulnerability affects the following supported versions: 12.2.1.3.0 Technologies Affected Oracle Weblogic Serve...

Oracle MySQL Server Cpuoct2019 Multiple Security Vulnerabilities

Description Oracle MySQL Server is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'MySQL Protocol' protocol. The 'Server: PS', 'Server: Security: Encryption', 'Server: C API', 'Server: Replication', and 'InnoDB' components are affected. These vulnerabiliti...

Oracle Java SE/Java SE Embedded CVE-2019-2949 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over 'Kerberos' protocol. This issue affects the 'Kerberos' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13;...

Oracle Hyperion Financial Reporting CVE-2019-2959 Remote Security Vulnerability

Description Oracle Hyperion Financial Reporting is prone to a remote security vulnerability in Security Models. The vulnerability can be exploited over the 'HTTP' protocol. This vulnerability affects the following supported versions: 11.1.2.4 Technologies Affected Oracle Hyperion Financial...

Oracle Siebel Core - DB Deployment and Configuration CVE-2019-2965 Remote Security Vulnerability

Description Oracle Siebel Core - DB Deployment and Configuration is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Install - Configuration' component is affected. This vulnerability affects the following supported versions: 19.8 and pri...

Oracle Java SE/Java SE Embedded CVE-2019-2975 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Scripting' component. This vulnerability affects the following supported versions: Java SE: 8u221, 11.0.4, 13; Java SE...

Oracle Java SE/Java SE Embedded CVE-2019-2933 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Libraries' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13;...

Oracle Java SE/Java SE Embedded CVE-2019-2945 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Networking' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13;...

Oracle Java SE/Java SE Embedded CVE-2019-2894 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Security' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13; Ja...

SLUB Event Registration Extension CVE-2019-16700 Arbitrary File Upload Vulnerability

Description SLUB Event Registration Extension is prone to an arbitrary-file-upload vulnerability. A remote attacker can leverage this issue to execute arbitrary code within the context of the application, upload arbitrary code and execute it and execute arbitrary script code in the browser of an...

Oracle FLEXCUBE Direct Banking Multiple Remote Security Vulnerabilities

Description Oracle FLEXCUBE Direct Banking is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'eMail' and 'Payments' components are affected. These vulnerabilities affect the following supported versions: 12.0.2, 12.0.3...

Oracle MySQL Server Cpuoct2019 Multiple Security Vulnerabilities

Description Oracle MySQL Server is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'MySQL Protocol' protocol. The 'Server: C API', 'Server: Optimizer', 'Server: Parser', 'InnoDB', 'Server: Security: Encryption', and 'Server: Connection' components are...

Oracle MySQL Connectors CVE-2019-2920 Remote Security Vulnerability

Description Oracle MySQL Connectors is prone to a remote security vulnerability. The vulnerability can be exploited over the 'MySQL Protocol' Protocol. The 'Connector/ODBC' component is affected. This vulnerability affects the following supported versions: 5.3.13 and prior, 8.0.17 and prior...

Oracle Java SE/Java SE Embedded CVE-2019-2958 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Libraries' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13;...

Adobe Download Manager CVE-2019-8071 Insecure File Permission Vulnerability

Description Adobe Download Manager is prone to an insecure file-permission vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions with elevated privileges; this may aid in launching further attacks. Adobe Download Manager 2.0.0.3...

Adobe Acrobat and Reader APSB19-49 Multiple Information Disclosure Vulnerabilities

Description Adobe Acrobat and Reader are prone to multiple information-disclosure vulnerabilities. An attacker can exploit these issues to gain access to sensitive information that may aid in further attacks. Technologies Affected Adobe Acrobat 2017.008.30051 Adobe Acrobat 2017.011.30059 Adobe...

Palo Alto Networks GlobalProtect Agent CVE-2019-17435 Local Privilege Escalation Vulnerability

Description Palo Alto Networks GlobalProtect Agent is prone to a local privilege-escalation vulnerability. Local attackers may exploit this issue to gain elevated privileges on the affected system. Versions prior to Palo Alto Networks GlobalProtect agent 4.1.13 and 5.0.4 for Windows platform are...

Adobe Experience Manager APSB19-48 Multiple Security Vulnerabilities

Description Adobe Experience Manager is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary script code in the context of the affected website. This may allow the attacker to steal cookie-based authentication credentials, to gain access to sensitive...

Adobe Acrobat and Reader Type Confusion Multiple Arbitrary Code Execution Vulnerabilities

Description Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities . Successfully exploiting these issues allow attackers to execute arbitrary code in the context of current user running the affected application. Failed exploits will result in denial-of-service...

Oracle Forms CVE-2019-2886 Remote Security Vulnerability

Description Oracle Forms is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Services' component is affected. This vulnerability affects the following supported versions: 12.2.1.3.0 Technologies Affected Oracle Forms 12.2.1.3.0...

Oracle Data Integrator CVE-2019-2943 Remote Security Vulnerability

Description Oracle Data Integrator is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Studio' component is affected. This vulnerability affects the following supported versions: 12.2.1.3.0 Technologies Affected Oracle Data Integrator...

Oracle Solaris Cpuoct2019 Multiple Local Security Vulnerabilities

Description Oracle Solaris is prone to multiple local security vulnerabilities. These vulnerabilities affect the following supported versions: 11 Technologies Affected Oracle Solaris 11 Recommendations Permit local access for trusted individuals only. Where possible, use restricted environments a...

Oracle Database Server Multiple Remote Security Vulnerabilities

Description Oracle Database Server is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'OracleNet' protocol. These vulnerabilities affects the following supported versions: 12.2.0.1, 18c and 19c Technologies Affected Oracle Database Server 12.2.0....

Oracle WebLogic Server Multiple Remote Security Vulnerabilities

Description Oracle WebLogic Server is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Console', 'Web Services', 'EJB Container', and 'Web Services' components are affected. These vulnerabilities affect the following supporte...

Oracle Hyperion Enterprise Performance Management Architect Remote Security Vulnerability

Description Oracle Hyperion Enterprise Performance Management Architect is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Workspace' sub component is affected. This vulnerability affects the following supported versions: 11.1.2.4...

Oracle Database Server CVE-2019-2909 Remote Security Vulnerability

Description Oracle Database Server is prone to a remote security vulnerability. The vulnerability can be exploited over multiple protocols. The 'Java VM' component is affected. This vulnerability affects the following supported versions: 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Technologies...

Oracle GraalVM Enterprise Edition CVE-2019-2986 Remote Security Vulnerability

Description Oracle GraalVM Enterprise Edition is prone to a remote security vulnerability. This vulnerability can be exploited over the 'Multiple' protocol. The 'LLVM Interpreter' component is affected. This vulnerability affects the following supported versions: 19.2.0 Technologies Affected Orac...

Adobe Acrobat and Reader APSB19-49 Multiple Arbitrary Code Execution Vulnerabilities

Description Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities. Successfully exploiting these issues allows attackers to execute arbitrary code in the context of current user running the affected application. Failed exploits will result in denial-of-service...

Oracle Business Intelligence Enterprise Edition CVE-2019-3012 Remote Security Vulnerability

Description Oracle Business Intelligence Enterprise Edition is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'BI Platform Security' component is affected. This vulnerability affects the following supported versions: 11.1.1.9.0,...

Oracle Banking Digital Experience CVE-2019-3019 Remote Security Vulnerability

Description Oracle Banking Digital Experience is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Loan Calculator' component is affected. This vulnerability affects the following supported versions: 18.1, 18.2, 18.3, 19.1 Technologies...

Oracle Java SE/Java SE Embedded CVE-2019-2989 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Networking' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13;...

Oracle Retail Xstore Office CVE-2018-3300 Remote Security Vulnerability

Description Oracle Retail Xstore Office is prone to a remote security vulnerability. This vulnerability can be exploited over the 'HTTP' protocol. The 'Internal Operations' component is affected. This vulnerability affects the following supported versions: 7.1 Technologies Affected Oracle Retail...

Oracle Hospitality Cruise Dining Room Management CVE-2019-2953 Remote Security Vulnerability

Description Oracle Hospitality Cruise Dining Room Management is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. This vulnerability affects the following supported versions: 8.0.80 Technologies Affected Oracle Hospitality Cruise Dining Room...

Oracle Solaris CVE-2019-2765 Local Security Vulnerability

Description Oracle Solaris is prone to a local security vulnerability. This issue affects the 'Filesystem' component. This vulnerability affects the following supported version: 11, 10 Technologies Affected Oracle Solaris 10 Oracle Solaris 11 Recommendations Permit local access for trusted...

Oracle VM VirtualBox Multiple Local Security Vulnerabilities

Description Oracle VM VirtualBox is prone to multiple local security vulnerabilities in the 'Core' component. These vulnerabilities affect the following supported versions: Prior to 5.2.32, prior to 6.0.14 Technologies Affected Oracle VM VirtualBox 1.6 Oracle VM VirtualBox 1.6.0 Oracle VM...

Adobe Acrobat and Reader CVE-2019-8166 Arbitrary Code Execution Vulnerability

Description Adobe Acrobat and Reader are prone to an arbitrary code-execution vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of current user running the affected application. Failed exploits will result in denial-of-service conditions...

Oracle Primavera P6 Enterprise Project Portfolio Management Remote Security Vulnerability

Description Oracle Primavera P6 Enterprise Project Portfolio Management is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Web Access' component is affected. This vulnerability affects the following supported versions: 17.1.0 through...

Oracle E-Business Suite CVE-2019-2942 Remote Security Vulnerability

Description Oracle E-Business Suite is prone to a remote security vulnerability in Oracle Advanced Outbound Telephony. The vulnerability can be exploited over the 'HTTP' protocol. The 'User Interface' component is affected. This vulnerability affects the following supported versions: 12.1.1 throu...

Oracle PeopleSoft Enterprise SCM eProcurement CVE-2019-3001 Remote Security Vulnerability

Description Oracle PeopleSoft Enterprise SCM eProcurement is prone to a remote security vulnerability. These vulnerabilities can be exploited over the 'HTTP' protocol. These vulnerabilities affect the following supported versions: 9.2 Technologies Affected Oracle PeopleSoft Enterprise SCM...

Sonatype Nexus Repository Manager CVE-2019-15588 OS Command Injection Vulnerability

Description Sonatype Nexus Repository Manager is prone to an OS command-injection vulnerability. An attacker may exploit this issue to inject and execute arbitrary commands within the context of the affected application; this may aid in further attacks. Versions prior to Nexus Repository Manager...

Oracle PeopleSoft Enterprise PeopleTools Multiple Remote Security Vulnerabilities

Description Oracle PeopleSoft Enterprise PeopleTools is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. These vulnerabilities affect the following supported versions: 8.56, 8.57 Technologies Affected Oracle PeopleSoft Enterprise...

Oracle Retail Customer Management and Segmentation Foundation Remote Security Vulnerability

Description Oracle Retail Customer Management and Segmentation Foundation is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Segment' component is affected. This vulnerability affects the following supported versions: 17.0 Technologies...

TYPO3 freeCap CAPTCHA Extension CVE-2019-16699 Remote Code Execution Vulnerability

Description TYPO3 freeCap CAPTCHA extension is prone to a remote code-execution vulnerability. A remote attacker can leverage this issue to execute arbitrary code within the context of the application. Successful exploits will compromise the application and possibly the underlying system. Version...

Oracle Java SE/Java SE Embedded CVE-2019-2983 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Serialization' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 1...

Oracle Java SE CVE-2019-2977 Remote Security Vulnerability

Description Oracle Java SE is prone to a remote security vulnerability. The vulnerability can be exploited over multiple protocols. This issue affects the 'Hotspot' component. This vulnerability affects the following supported versions: Java SE: 11.0.4, 13 Technologies Affected Oracle Java SE...