Health Sciences Data Management Workbench@2.5.2.1 Security Vulnerabilities and Issues — Health Sciences Data Management Workbench@2.5.2.1 CVE List

Lucene search

OracleHealth Sciences Data Management Workbench2.5.2.1

5 matches found

CVE•added 2021/12/28 8:15 p.m.•827 views

CVE-2021-44832

Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is ...

8.5CVSS8.4AI score0.43837EPSS

CVE•added 2021/04/13 7:15 a.m.•518 views

CVE-2021-29425

In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but not further above (thus "limited" path traversal),...

5.8CVSS6.7AI score0.00357EPSS

CVE•added 2021/02/15 1:15 p.m.•446 views

CVE-2021-23337

Lodash versions prior to 4.17.21 are vulnerable to Command Injection via the template function.

7.2CVSS7.2AI score0.00551EPSS

CVE•added 2021/02/15 11:15 a.m.•232 views

CVE-2020-28500

Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service (ReDoS) via the toNumber, trim and trimEnd functions.

5.3CVSS6AI score0.00275EPSS

CVE•added 2022/07/19 10:15 p.m.•62 views

CVE-2022-21518

Vulnerability in the Oracle Health Sciences Data Management Workbench product of Oracle Health Sciences Applications (component: User Interface). Supported versions that are affected are 2.4.8.7 and 2.5.2.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTT...

6.5CVSS6.4AI score0.00774EPSS