23 matches found
CVE-2014-3707
CVE-2014-3707 affects libcurl/curl prior to a non-vulnerable build when using CURLOPT_COPYPOSTFIELDS, where curl_easy_duphandle incorrectly copies HTTP POST data, causing an out-of-bounds read. Affected products/versions cited in the documents include libcurl/curl 7.17.1 through 7.38.0, enabling ...
CVE-2023-22062
CVE-2023-22062 affects Oracle Hyperion Financial Reporting (Repository component) with affected version 11.2.13.0.000. The cited vulnerability allows a low-privileged attacker with network access over HTTP to compromise the system, potentially leading to unauthorized access to data and a partial ...
CVE-2013-3803
Oracle Hyperion 11.x (11.1.1.3/11.1.1.4.107 and earlier, 11.1.2.1.129 and earlier, 11.1.2.2.305 and earlier) is affected by a directory traversal vulnerability in the Hyperion BI+ component. The issue allows remote authenticated users to access sensitive files via crafted resource requests (e.g.,...
CVE-2015-4823
CVE-2015-4823 concerns an unspecified vulnerability in the Hyperion Installation Technology component of Oracle Hyperion 11.1.2.3 that could allow local users to affect confidentiality via unknown vectors related to Essbase Rapid Deploy. The connected sources confirm the affected product/version,...
CVE-2015-4773
Technical details about CVE-2015-4773 are not publicly available in the provided documents. The connected records mention Oracle Hyperion and generic impact but do not specify affected versions, root cause, or fixes. Monitor for updates.
CVE-2015-2584
CVE-2015-2584 affects Oracle Hyperion Hyperion Enterprise Performance Management Architect component, specifically versions 11.1.2.2 and 11.1.2.3. The vulnerability is described as affecting integrity via unknown vectors, with remote authenticated access required. The exact root cause, attack vec...
CVE-2014-4246
CVE-2014-4246 is an unspecified vulnerability in Oracle Hyperion’s Hyperion Analytic Provider Services component affecting Hyperion 11.1.2.2 and 11.1.2.3. The NVD description states it allows remote authenticated users to affect confidentiality via vectors related to SVP. It identifies the affect...
CVE-2012-1729
CVE-2012-1729 affects the Hyperion BI+ component of Oracle Hyperion 11.1.1.3 and earlier. The description indicates an unspecified vulnerability that could impact integrity and relates to UI and Visualization, with remote exploitation via unknown vectors. The available connected sources confirm t...
CVE-2014-2453
CVE-2014-2453 concerns an unspecified vulnerability in the Hyperion Common Admin component of Oracle Hyperion 11.1.2.2 and 11.1.2.3 that could allow remote attackers to affect integrity via unknown vectors related to the User Interface. The available connected sources confirm the affected product...
CVE-2014-4206
Technical details for CVE-2014-4206 are not publicly available in the provided documents; no affected products, root cause, impact, or remediation are specified here. Monitor for updates.
CVE-2018-3140
CVE-2018-3140 affect: Oracle Hyperion Essbase Administration Services (EAS) Console, part of Hyperion Essbase Administration Services. The vulnerability is exploitable via HTTP without authentication on affected 11.1.2.4 deployments. Successful exploitation can lead to unauthorized update/insert/...
CVE-2015-0509
CVE-2015-0509 affects the Oracle Hyperion BI+ component, specifically the Reporting and Analysis subcomponent, in Oracle Hyperion 11.1.2.2 and 11.1.2.3. The vulnerability is described as unspecified with impact on integrity and unspecified remote exploitation via unknown vectors. The connected do...
CVE-2014-4203
Technical details for CVE-2014-4203 are not publicly available in the provided documents. Monitor for updates; the dataset contains only high-level descriptions with no product/version specifics or exploit information.
CVE-2014-4271
Technical details for CVE-2014-4271 are not provided in the supplied documents. Monitor for updates from official advisories.
CVE-2014-4269
Technical details about CVE-2014-4269 are not provided in the connected documents. No explicit affected product/version, root cause, impact, or remediation information is available. Monitor for updates from official advisories.
CVE-2014-0436
Technical details about CVE-2014-0436 (affected components, root cause, impact, and fixes) are not publicly available in the provided documents. Monitor for updates.
CVE-2014-2454
CVE-2014-2454 is an unspecified vulnerability in the Hyperion Common Admin component of Oracle Hyperion 11.1.2.2/11.1.2.3. The available documents identify that remote attackers could affect confidentiality via unknown vectors related to the User Interface. The NVD entry provides a Network attack...
CVE-2014-2455
Technical details for CVE-2014-2455 are not publicly available in the provided documents. Monitor for updates from official advisories; no specific affected product versions, root cause, or remediation are disclosed here.
CVE-2018-3142
CVE-2018-3142 affects Oracle Hyperion Essbase Administration Services (EAS Console) version 11.1.2.4. The vulnerability resides in EAS Console and can be exploited by a low-privilege attacker with network access via HTTP to compromise the Hyperion EAS Services. CVSSv3.0 base score is 7.7 (Confide...
CVE-2014-0367
Technical details about CVE-2014-0367 are not publicly available in the provided documents. Monitor for updates; no affected products, vectors, or fixes are disclosed here.
CVE-2018-3141
CVE-2018-3141 affects Oracle Hyperion Essbase Administration Services (EAS Console) 11.1.2.4. An unauthenticated attacker with network access over HTTP can compromise EAS and potentially update, insert, or delete data. Root cause and affected component are described in public CVE records (NVD/NVD...
CVE-2015-2592
CVE-2015-2592 affects Oracle Hyperion Hyperion Enterprise Performance Management Architect component (Oracle Hyperion) with affected versions 11.1.2.2 and 11.1.2.3. The connected materials describe an unspecified vulnerability that could allow remote authenticated users to affect integrity via un...
CVE-2014-4270
Technical details for CVE-2014-4270 are not publicly available in the provided documents. No explicit information on affected product/version, root cause, impact, or remediation is present. Monitor for updates.