13 matches found
CVE-2019-10219
The CVE-2019-10219 entry affects Hibernate Validator: SafeHtml validator annotation fails to sanitize HTML comments/instructions, enabling XSS in affected code paths. Affected CP4S versions are 1.7.2.0, 1.8.0.0, and 1.8.1.0. Remediation is to upgrade to Cloud Pak for Security 1.9.0.0 per IBM guid...
CVE-2021-2351
CVE-2021-2351 affects Oracle Database Server’s Advanced Networking Option, with affected versions 12.1.0.2, 12.2.0.1, and 19c. The vulnerability allows unauthenticated network access via Oracle Net to compromise the Advanced Networking Option, with access requiring user interaction (UI_R) and ris...
CVE-2021-2110
CVE-2021-2110 affects Oracle Argus Safety (Letters component) with affected version 8.2.2. The Red Hat/NVD entries confirm a network-accessible issue exploitable by a low-privileged attacker over HTTP, leading to unauthorized read access to a subset of Oracle Argus Safety data (confidentiality im...
CVE-2021-2040
CVE-2021-2040 affects Oracle Argus Safety (Oracle Health Sciences Applications), specifically the Case Form / Local Affiliate Form in version 8.2.2. The root cause is described as a vulnerability enabling unauthenticated network access via HTTP that, with user interaction, can lead to unauthorize...
CVE-2025-21570
The CVE-2025-21570 entry concerns Oracle Life Sciences Argus Safety (component: Login) with affected version 8.2.3. The vulnerability is exploitable over HTTP by an unauthenticated attacker with network access, with exploitation requiring user interaction, and can lead to unauthorized update/inse...
CVE-2018-2642
The CVE-2018-2642 entry concerns the Oracle Argus Safety File Upload subcomponent in Oracle Health Sciences Applications. Affected versions are 7.x and 8.0.x. The vulnerability is exploitable by a low-privilege attacker with network access via HTTP, with exploitation requiring user interaction. S...
CVE-2019-2431
CVE-2019-2431 affects Oracle Argus Safety, specifically the Console subcomponent, in versions 8.1 and 8.2 . The flaw allows an unauthenticated attacker with network access via HTTP to compromise Argus Safety, with exploitation requiring human interaction. The vulnerability can enable unauthorized...
CVE-2019-2432
CVE-2019-2432 affects Oracle Argus Safety (Login subcomponent) in Oracle Health Sciences Applications. The vulnerability is present in supported versions 8.1 and 8.2 and can be exploited by a low-privileged attacker with network access via HTTP to read, update, insert, or delete data in Argus Saf...
CVE-2019-2430
Summary: CVE-2019-2430 applies to Oracle Argus Safety (Oracle Health Sciences Applications), specifically the Console subcomponent, with affected versions 8.1 and 8.2. An attacker with network access can exploit this vulnerability over HTTP with low privileges to gain unauthorized access to data ...
CVE-2010-3593
Technical details about CVE-2010-3593 are not publicly available in the provided documents. Monitor for updates from Oracle advisories and CVE/NVD entries for concrete information on impact and fixes.
CVE-2018-2613
CVE-2018-2613 affects Oracle Argus Safety (Oracle Health Sciences Applications), specifically the Login subcomponent. Publicly documented affected versions are 7.x, 8.0.x and 8.1. The vulnerability enables an unauthenticated attacker with network access via HTTP to compromise Oracle Argus Safety,...
CVE-2018-2643
CVE-2018-2643 affects Oracle Argus Safety (Oracle Health Sciences) in the Case Selection subcomponent. Affected versions are 7.x and 8.0.x. The vulnerability allows a low-privilege attacker with network access via HTTP to compromise data in Oracle Argus Safety, potentially enabling unauthorized u...
CVE-2018-2644
CVE-2018-2644 affects Oracle Argus Safety, specifically the Worklist subcomponent. Affected versions are 7.x, 8.0.x, and 8.1. An unauthenticated attacker with network access via HTTP can compromise Argus Safety; attacks require human interaction. The vulnerability may allow unauthorized update, i...