Communications Unified Inventory Management@7.3 Security Vulnerabilities and Issues — Communications Unified Inventory Management@7.3 CVE List

Lucene search

OracleCommunications Unified Inventory Management7.3

4 matches found

CVE•added 2019/04/20 12:29 a.m.•2189 views

CVE-2019-11358

jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable proto property, it could extend the native Object.prototype.

6.1CVSS6.4AI score0.02394EPSS

CVE•added 2018/10/18 10:29 p.m.•165 views

CVE-2018-15756

Spring Framework, version 5.1, versions 5.0.x prior to 5.0.10, versions 4.3.x prior to 4.3.20, and older unsupported versions on the 4.2.x branch provide support for range requests when serving static resources through the ResourceHttpRequestHandler, or starting in 5.0 when an annotated controller ...

7.5CVSS7.3AI score0.13593EPSS

CVE•added 2018/01/18 2:29 a.m.•41 views

CVE-2018-2570

Vulnerability in the Oracle Communications Unified Inventory Management component of Oracle Communications Applications (subcomponent: Portal). Supported versions that are affected are 7.2.4.2.x and 7.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

6.5CVSS5.6AI score0.00301EPSS

CVE•added 2018/01/18 2:29 a.m.•38 views

CVE-2018-2571

5.5CVSS4.7AI score0.00198EPSS