Enterprise Data Quality@11.1.1.9.0 Security Vulnerabilities and Issues — Enterprise Data Quality@11.1.1.9.0 CVE List

Lucene search

OracleEnterprise Data Quality11.1.1.9.0

3 matches found

CVE•added 2020/05/01 7:15 p.m.•442 views

CVE-2020-10683

dom4j before 2.0.3 and 2.1.x before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, there is popular external documentation from OWASP showing how to enable the safe, non-default behavior in any application that uses dom4j.

9.8CVSS9.2AI score0.02147EPSS

CVE•added 2019/05/28 7:29 p.m.•161 views

CVE-2019-0188

Apache Camel prior to 2.24.0 contains an XML external entity injection (XXE) vulnerability (CWE-611) due to using an outdated vulnerable JSON-lib library. This affects only the camel-xmljson component, which was removed.

7.5CVSS7.5AI score0.01956EPSS

CVE•added 2021/01/20 3:15 p.m.•45 views

CVE-2021-2017

Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy User Delegation). Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Us...

4.3CVSS4.3AI score0.00197EPSS