Fusion Middleware@11.1.1.7.0 Security Vulnerabilities and Issues — Fusion Middleware@11.1.1.7.0 CVE List

Lucene search

OracleFusion Middleware11.1.1.7.0

45 matches found

CVE•added 2015/01/21 2:59 p.m.•208 views

CVE-2014-0191

The xmlParserHandlePEReference function in parser.c in libxml2 before 2.9.2, as used in Web Listener in Oracle HTTP Server in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 and other products, loads external parameter entities regardless of whether entity substitution or validation is ...

4.3CVSS6.6AI score0.01309EPSS

CVE•added 2014/01/15 4:8 p.m.•56 views

CVE-2014-0400

Unspecified vulnerability in the Oracle Internet Directory component in Oracle Fusion Middleware 11.1.1.6 and 11.1.1.7 allows remote authenticated users to affect confidentiality via vectors related to OID LDAP server.

6.3CVSS5.2AI score0.00607EPSS

CVE•added 2014/04/16 2:55 a.m.•56 views

CVE-2014-2424

Unspecified vulnerability in the Oracle Event Processing component in Oracle Fusion Middleware 11.1.1.7.0 allows remote authenticated users to affect integrity via vectors related to CEP system.

4CVSS5.3AI score0.7776EPSS

CVE•added 2015/01/21 6:59 p.m.•55 views

CVE-2015-0386

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect availability via unknown vectors related to Web Listener, a different vulnerability than CVE-2013-0338, CVE-2013-2877, and CVE-2014-0191.

4.3CVSS7.6AI score0.01309EPSS

CVE•added 2015/01/21 7:59 p.m.•52 views

CVE-2015-0420

Unspecified vulnerability in the Oracle Forms component in Oracle Fusion Middleware 11.1.1.7 and 11.1.2.2 allows remote attackers to affect confidentiality via unknown vectors related to Forms Services.

4.3CVSS5.8AI score0.00362EPSS

CVE•added 2013/07/17 1:41 p.m.•51 views

CVE-2013-3770

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Content Server. NOTE: the previous information is from the ...

5.5CVSS4.9AI score0.00254EPSS

CVE•added 2015/01/21 3:28 p.m.•50 views

CVE-2014-6571

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Web Listener, a different vulnerability than CVE-2011-1944.

6.8CVSS7.1AI score0.17548EPSS

CVE•added 2014/07/17 5:10 a.m.•49 views

CVE-2014-4222

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect confidentiality via vectors related to plugin 1.1.

2.1CVSS5.3AI score0.005EPSS

CVE•added 2014/04/16 1:55 a.m.•48 views

CVE-2014-2404

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 10.1.4.3, 11.1.1.3.0, 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0, 11.1.2.1.0, and 11.1.2.2.0 allows remote authenticated users to affect confidentiality via unknown vectors related to WebGate.

4CVSS5.2AI score0.00219EPSS

CVE•added 2015/01/21 3:28 p.m.•48 views

CVE-2014-6580

Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.7 and 11.1.2.2 allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6.2AI score0.00311EPSS

CVE•added 2015/07/16 11:0 a.m.•48 views

CVE-2015-4742

Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.2.4.0, 12.1.2.0.0, and 12.1.3.0.0 allows remote attackers to affect availability via vectors related to ADF Faces.

5CVSS5.9AI score0.00705EPSS

CVE•added 2013/07/17 1:41 p.m.•47 views

CVE-2013-3772

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Web Forms.

4.3CVSS5.9AI score0.00483EPSS

CVE•added 2015/01/21 7:59 p.m.•47 views

CVE-2015-0414

Unspecified vulnerability in the Oracle SOA Suite component in Oracle Fusion Middleware 11.1.1.7 and 12.1.3.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Fabric Layer.

3.5CVSS5.2AI score0.00197EPSS

CVE•added 2014/01/15 4:8 p.m.•46 views

CVE-2014-0391

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.0, and 11.1.2.1 allows remote attackers to affect confidentiality via unknown vectors related to End User Self Service.

5CVSS5.7AI score0.00754EPSS

CVE•added 2016/01/21 2:59 a.m.•46 views

CVE-2016-0430

Unspecified vulnerability in the Web Cache component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote attackers to affect confidentiality via vectors related to SSL support, a different vulnerability than CVE-2016-0439.

4.3CVSS6.5AI score0.00295EPSS

CVE•added 2014/07/17 11:17 a.m.•45 views

CVE-2014-4249

Unspecified vulnerability in the BI Publisher component in Oracle Fusion Middleware 11.1.1.7 allows remote attackers to affect confidentiality via unknown vectors related to Mobile Service.

5CVSS5.7AI score0.0061EPSS

CVE•added 2014/10/15 10:55 p.m.•44 views

CVE-2014-6553

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5 and 11.1.1.7 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Admin Console.

6.4CVSS5.7AI score0.00351EPSS

CVE•added 2013/07/17 1:41 p.m.•43 views

CVE-2013-3769

4.3CVSS5.9AI score0.00483EPSS

CVE•added 2014/07/17 11:17 a.m.•43 views

CVE-2014-4251

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect integrity via vectors related to plugin 1.1.

3.5CVSS5.4AI score0.00581EPSS

CVE•added 2015/01/21 6:59 p.m.•43 views

CVE-2015-0367

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.1, and 11.1.2.2 allows remote attackers to affect integrity via vectors related to SSO Engine.

5CVSS5.9AI score0.00483EPSS

CVE•added 2016/01/21 2:59 a.m.•42 views

CVE-2016-0439

5CVSS6.5AI score0.00295EPSS

CVE•added 2014/10/15 10:55 p.m.•41 views

CVE-2014-6522

Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7, 11.1.2.4, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect integrity via vectors related to ADF Faces.

4.3CVSS5.9AI score0.00311EPSS

CVE•added 2015/07/16 11:0 a.m.•41 views

CVE-2015-4751

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.7 and 11.1.2.2 allows remote attackers to affect availability via unknown vectors related to Authentication Engine.

5CVSS6AI score0.00725EPSS

CVE•added 2014/01/15 4:8 p.m.•40 views

CVE-2013-5900

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.0, and 11.1.2.1 allows remote attackers to affect integrity via unknown vectors related to End User Self Service.

4.3CVSS5.9AI score0.00561EPSS

CVE•added 2014/07/17 5:10 a.m.•40 views

CVE-2014-2493

Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.2.4.0, and 12.1.2.0.0 allows remote attackers to affect confidentiality and availability via vectors related to ADF Faces.

6.4CVSS5.8AI score0.00897EPSS

CVE•added 2014/10/15 10:55 p.m.•40 views

CVE-2014-6487

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.1, and 11.1.2.2 allows remote authenticated users to affect integrity via unknown vectors related to End User Self Service.

3.5CVSS5.4AI score0.0015EPSS

CVE•added 2015/07/16 11:0 a.m.•40 views

CVE-2015-2658

Unspecified vulnerability in the Web Cache component in Oracle Fusion Middleware 11.1.1.7.0 allows remote attackers to affect confidentiality via vectors related to SSL/TLS Support.

5CVSS5.8AI score0.00277EPSS

CVE•added 2013/07/17 1:41 p.m.•39 views

CVE-2013-3755

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5.0 allows remote attackers to affect integrity via vectors related to SSO Engine.

4.3CVSS5.9AI score0.00524EPSS

CVE•added 2014/01/15 4:11 p.m.•39 views

CVE-2013-5785

Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.6, 11.1.1.7, and 11.1.2.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security and Authentication.

7.5CVSS6AI score0.01716EPSS

CVE•added 2013/10/16 5:55 p.m.•39 views

CVE-2013-5813

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, 11.1.1.7.0, and 11.1.1.8.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Content Server.

6.4CVSS5.7AI score0.00287EPSS

CVE•added 2015/01/21 6:59 p.m.•39 views

CVE-2015-0401

Unspecified vulnerability in the Oracle Directory Server Enterprise Edition component in Oracle Fusion Middleware 7.0 and 11.1.1.7 allows remote authenticated users to affect integrity via unknown vectors related to Admin Console.

4CVSS5.4AI score0.0015EPSS

CVE•added 2014/10/15 10:55 p.m.•38 views

CVE-2014-6552

4.3CVSS5.9AI score0.00351EPSS

CVE•added 2014/04/16 12:55 a.m.•37 views

CVE-2014-0450

Unspecified vulnerability in the Oracle WebCenter Portal component in Oracle Fusion Middleware 11.1.1.7 and 11.1.1.8 allows remote attackers to affect confidentiality via unknown vectors related to People Connection.

5CVSS5.8AI score0.00295EPSS

CVE•added 2014/07/17 11:17 a.m.•37 views

CVE-2014-4257

Unspecified vulnerability in the Oracle WebCenter Portal component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.8.0 allows remote attackers to affect confidentiality via unknown vectors related to Portlet Services.

7.1CVSS5.8AI score0.00576EPSS

CVE•added 2015/01/21 3:28 p.m.•37 views

CVE-2014-6576

Unspecified vulnerability in the Oracle Adaptive Access Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.1, and 11.1.2.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to OAM Integration.

5.5CVSS5.2AI score0.00164EPSS

CVE•added 2013/10/16 3:55 p.m.•36 views

CVE-2013-3836

Unspecified vulnerability in the Oracle Web Cache component in Oracle Fusion Middleware 11.1.1.6 and 11.1.1.7 allows remote authenticated users to affect confidentiality via vectors related to ESI/Partial Page Caching.

3.5CVSS5.2AI score0.00143EPSS

CVE•added 2014/07/17 5:10 a.m.•36 views

CVE-2014-4212

Unspecified vulnerability in the Oracle Fusion Middleware component in Oracle Fusion Middleware 11.1.1.7 allows remote attackers to affect confidentiality via unknown vectors related to Process Mgmt and Notification.

4.3CVSS4.2AI score0.00524EPSS

CVE•added 2015/01/21 6:59 p.m.•36 views

CVE-2015-0362

Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7 allows remote attackers to affect confidentiality via unknown vectors related to BI Publisher Security.

5CVSS5.8AI score0.00362EPSS

CVE•added 2016/01/21 2:59 a.m.•36 views

CVE-2016-0401

Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote attackers to affect integrity via unknown vectors related to Scheduler, a different vulnerability than CVE-2016-0429.

4.3CVSS6.6AI score0.00311EPSS

CVE•added 2016/01/21 3:0 a.m.•34 views

CVE-2016-0470

Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to BI Publisher Security.

5.5CVSS5.8AI score0.00164EPSS

CVE•added 2015/07/16 11:0 a.m.•32 views

CVE-2015-4747

Unspecified vulnerability in the Oracle Event Processing component in Oracle Fusion Middleware 11.1.1.7 and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CEP system.

6.8CVSS6AI score0.00641EPSS

CVE•added 2016/01/21 2:59 a.m.•32 views

CVE-2016-0429

4.3CVSS6.6AI score0.00311EPSS

CVE•added 2014/07/17 5:10 a.m.•31 views

CVE-2014-4211

Unspecified vulnerability in the Oracle WebCenter Portal component in Oracle Fusion Middleware 11.1.1.7 and 11.1.1.8 allows remote attackers to affect integrity via unknown vectors related to Portlet Services.

5CVSS5.9AI score0.00494EPSS

CVE•added 2014/01/15 4:11 p.m.•29 views

CVE-2013-5869

Unspecified vulnerability in the Oracle WebCenter Portal component in Oracle Fusion Middleware 11.1.1.6.0, 11.1.1.7.0, and 11.1.1.8.0 allows remote attackers to affect confidentiality via unknown vectors related to Page Service.

5CVSS5.8AI score0.00562EPSS

CVE•added 2015/01/21 6:59 p.m.•29 views

CVE-2015-0399

Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 10.1.3.4.2 and 11.1.1.7 allows remote authenticated users to affect confidentiality via unknown vectors related to Analytics Web General.

4CVSS5.2AI score0.00219EPSS