Lucene search
K
OracleHyperion Planning

6 matches found

CVE
CVE
added 2021/12/18 11:55 a.m.1185 views

CVE-2021-45105

Summary of CVE-2021-45105 (Log4j2) : Affected Log4j 2.x versions 2.0-alpha1 through 2.16.0 (except 2.12.3 and 2.3.1) are vulnerable to denial of service via uncontrolled recursion triggered by self-referential lookups in Thread Context Map data. The root cause is improper handling of self-referen...

5.9CVSS7.7AI score0.99999EPSS
In wildWeb
CVE
CVE
added 2019/10/16 5:40 p.m.165 views

CVE-2019-2904

CVE-2019-2904 is an insecure deserialization vulnerability in Oracle JDeveloper/ADF Faces (Oracle Fusion Middleware). Affected: JDeveloper/ADF Faces components within Fusion Middleware, specifically the ADF Faces runtime used by Oracle JDeveloper and ADF. Affected versions listed include 11.1.1.9...

9.8CVSS9.1AI score0.14264EPSS
CVE
CVE
added 2019/07/23 10:31 p.m.140 views

CVE-2019-2861

CVE-2019-2861 affects Oracle Hyperion Planning (Security subcomponent) with affected version 11.1.2.4; multiple sources describe an XML External Entity (XXE) vulnerability that could disclose internal files, with exploitation demonstrated for Hyperion Planning 11.1.2.3. The attacks require authen...

4.2CVSS2.9AI score0.04314EPSS
Web
CVE
CVE
added 2018/01/18 2:0 a.m.59 views

CVE-2018-2733

The CVE-2018-2733 entry covers a vulnerability in Oracle Hyperion Planning (Security subcomponent) affecting version 11.1.2.4.007. The issue can be triggered by a high-privilege attacker with network access via HTTP and requires user interaction from a person other than the attacker. Successful e...

7.6CVSS7.7AI score0.01266EPSS
CVE
CVE
added 2020/10/21 2:4 p.m.50 views

CVE-2020-14764

CVE-2020-14764 affects Oracle Hyperion Planning (Application Development Framework) 11.1.2.4. The vulnerability is described as difficult to exploit with network access via HTTP, requiring user interaction, and can lead to unauthorized creation/deletion/modification of data in Hyperion Planning. ...

4.2CVSS3.8AI score0.0079EPSS
CVE
CVE
added 2019/07/23 10:31 p.m.46 views

CVE-2019-2770

CVE-2019-2770 affects Oracle Hyperion Planning Smart View (subcomponent) with vulnerable version 11.1.2.4. The vulnerability allows a high-privileged attacker who has network access via HTTP and must involve user interaction to compromise Hyperion Planning, potentially resulting in unauthorized a...

4.5CVSS4.1AI score0.01213EPSS