Agile Product Lifecycle Management@9.3.4 Security Vulnerabilities and Issues — Agile Product Lifecycle Management@9.3.4 CVE List

Lucene search

OracleAgile Product Lifecycle Management9.3.4

33 matches found

CVE•added 2018/06/25 3:29 p.m.•108 views

CVE-2018-11040

Spring Framework, versions 5.0.x prior to 5.0.7 and 4.3.x prior to 4.3.18 and older unsupported versions, allows web applications to enable cross-domain requests via JSONP (JSON with Padding) through AbstractJsonpResponseBodyAdvice for REST controllers and MappingJackson2JsonView for browser reques...

7.5CVSS8.3AI score0.08246EPSS

CVE•added 2018/05/11 8:29 p.m.•104 views

CVE-2018-1257

Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message ...

6.5CVSS7AI score0.0179EPSS

CVE•added 2016/10/25 2:30 p.m.•46 views

CVE-2016-5527

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5524.

5.9CVSS5.1AI score0.00329EPSS

CVE•added 2016/07/21 10:13 a.m.•40 views

CVE-2016-3553

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality and integrity via vectors related to PC Core.

5.5CVSS4.9AI score0.00241EPSS

CVE•added 2019/07/23 11:15 p.m.•40 views

CVE-2019-2817

Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Folders, Files & Attachments). Supported versions that are affected are 9.3.3, 9.3.4, 9.3.5 and 9.3.6. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP ...

5.4CVSS5AI score0.00782EPSS

CVE•added 2016/10/25 2:30 p.m.•38 views

CVE-2016-5524

5.3CVSS5.2AI score0.00329EPSS

CVE•added 2016/10/25 2:29 p.m.•37 views

CVE-2016-5515

8.8CVSS7.6AI score0.00882EPSS

CVE•added 2016/07/21 10:13 a.m.•36 views

CVE-2016-3526

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via vectors related to SDK, a different vulnerability than CVE-2016-3529 and CVE-2016-3560.

7.8CVSS4.8AI score0.00903EPSS

CVE•added 2016/07/21 10:13 a.m.•36 views

CVE-2016-3529

5.8CVSS5AI score0.00903EPSS

CVE•added 2016/07/21 10:13 a.m.•36 views

CVE-2016-3537

6.8CVSS3.5AI score0.00318EPSS

CVE•added 2016/07/21 10:13 a.m.•36 views

CVE-2016-3554

9CVSS7.5AI score0.01451EPSS

CVE•added 2016/10/25 2:29 p.m.•36 views

CVE-2016-5523

8.8CVSS7.6AI score0.00882EPSS

CVE•added 2016/07/21 10:13 a.m.•34 views

CVE-2016-3555

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via vectors related to PGC / Excel Plugin.

6.1CVSS5.6AI score0.00315EPSS

CVE•added 2016/07/21 10:13 a.m.•34 views

CVE-2016-3560

5.3CVSS5AI score0.00903EPSS

CVE•added 2016/10/25 2:29 p.m.•34 views

CVE-2016-5521

7.5CVSS5.9AI score0.0033EPSS

CVE•added 2016/07/21 10:12 a.m.•33 views

CVE-2016-3507

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to WebClient / Admin.

4.3CVSS4.6AI score0.00352EPSS

CVE•added 2016/07/21 10:13 a.m.•33 views

CVE-2016-3519

6.1CVSS5.6AI score0.00315EPSS

CVE•added 2016/07/21 10:13 a.m.•33 views

CVE-2016-3557

6.1CVSS5.6AI score0.00315EPSS

CVE•added 2016/07/21 10:15 a.m.•33 views

CVE-2016-5473

3.5CVSS3.9AI score0.00318EPSS

CVE•added 2016/10/25 2:29 p.m.•33 views

CVE-2016-5522

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via unknown vectors.

4.3CVSS4.5AI score0.00152EPSS

CVE•added 2016/07/21 10:13 a.m.•32 views

CVE-2016-3517

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to PC / Get Shortcut.

4.3CVSS4.6AI score0.00367EPSS

CVE•added 2016/07/21 10:13 a.m.•32 views

CVE-2016-3539

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect integrity and availability via vectors related to File Folders / Attachment, a different vulnerability than CVE-2016-3538.

7.5CVSS5.9AI score0.00747EPSS

CVE•added 2016/07/21 10:13 a.m.•32 views

CVE-2016-3561

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to SDK.

7.5CVSS6.8AI score0.00581EPSS

CVE•added 2016/10/25 2:29 p.m.•32 views

CVE-2016-5510

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors.

5.3CVSS5.5AI score0.00186EPSS

CVE•added 2016/10/25 2:29 p.m.•32 views

CVE-2016-5512

6.1CVSS5.9AI score0.0033EPSS

CVE•added 2016/07/21 10:13 a.m.•31 views

CVE-2016-3509

5.4CVSS4.9AI score0.00236EPSS

CVE•added 2016/07/21 10:13 a.m.•31 views

CVE-2016-3556

10CVSS8.3AI score0.02563EPSS

CVE•added 2016/10/25 2:29 p.m.•31 views

CVE-2016-5514