Fusion Middleware Mapviewer Security Vulnerabilities and Issues — Fusion Middleware Mapviewer CVE List

Lucene search

OracleFusion Middleware Mapviewer

4 matches found

CVE•added 2018/01/18 11:29 p.m.•2410 views

CVE-2015-9251

jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

6.1CVSS6.3AI score0.11287EPSS

CVE•added 2018/05/24 4:29 p.m.•164 views

CVE-2018-8013

In Apache Batik 1.x before 1.10, when deserializing subclass of AbstractDocument, the class takes a string from the inputStream as the class name which then use it to call the no-arg constructor of the class. Fix was to check the class type before calling newInstance in deserialization.

9.8CVSS8.6AI score0.0098EPSS

CVE•added 2018/07/18 1:29 p.m.•38 views

CVE-2018-2943

Vulnerability in the Oracle Fusion Middleware MapViewer component of Oracle Fusion Middleware (subcomponent: Map Builder). Supported versions that are affected are 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise ...

9.8CVSS8.7AI score0.02487EPSS

CVE•added 2018/08/02 12:29 p.m.•38 views

CVE-2018-3109

Vulnerability in the Oracle Fusion Middleware MapViewer component of Oracle Fusion Middleware (subcomponent: Map Builder). Supported versions that are affected are 12.2.1.2 and 12.2.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracl...

6.5CVSS6.1AI score0.00908EPSS