16 matches found
CVE-2022-23437
Technical specifics for CVE-2022-23437 (Xerces-J infinite loop in XML parsing) are not disclosed in the provided connected documents. Monitor for vendor/maintainer updates; current entries reference the issue but do not provide detailed root-cause, affected versions beyond 2.12.1, or fixes.
CVE-2020-17521
CVE-2020-17521 affects Apache Groovy extension methods that handle temporary directory creation. The root cause is a race condition in Groovy’s implementation, which previously called a now-superseded Java JDK method; this could allow a local attacker to obtain sensitive information. Affected ver...
CVE-2021-2351
CVE-2021-2351 affects Oracle Database Server’s Advanced Networking Option, with affected versions 12.1.0.2, 12.2.0.1, and 19c. The vulnerability allows unauthenticated network access via Oracle Net to compromise the Advanced Networking Option, with access requiring user interaction (UI_R) and ris...
CVE-2014-2471
Technical details about CVE-2014-2471 are not publicly available in the provided documents. Monitor for updates from Oracle CPU advisories and CVE trackers for affected versions and fixes.
CVE-2014-0389
Technical details about CVE-2014-0389 are not publicly provided in the supplied documents. No explicit impact, affected versions beyond Oracle iLearning 6.0, or remediation are stated here. Monitor sources for updates.
CVE-2014-6594
CVE-2014-6594 applies to Oracle iLearning (6.0/6.1) with the Learner Pages subcomponent. The vulnerability is described as unspecified and allows remote attackers to affect confidentiality via unknown vectors related to Learner Pages. The connected documents provide limited concrete details beyon...
CVE-2020-14595
CVE-2020-14595 affects Oracle iLearning, specifically the Assessment Manager component in versions 6.1 and 6.1.1. The available documents describe an easily exploitable, network-accessible vulnerability that allows an unauthenticated attacker over HTTP to gain unauthorized access to data or compl...
CVE-2017-10199
CVE-2017-10199 affects Oracle iLearning, Learner Pages subcomponent, version 6.2. An unauthenticated attacker with network access via HTTP can compromise Oracle iLearning, with user interaction required, potentially leading to unauthorized access to data and to update/insert/delete of Oracle iLea...
CVE-2015-0436
Technical details about CVE-2015-0436 are not publicly available in the provided documents. Monitor for updates from official advisories for affected products and remediation guidance.
CVE-2020-2709
The CVE-2020-2709 vulnerability affects Oracle iLearning 6.1, specifically the Learner Pages component. It is exploitable over HTTP by an unauthenticated attacker with network access; however, successful exploitation requires user interaction (UI:R) and can lead to unauthorized update/insert/dele...
CVE-2013-3775
CVE-2013-3775 affects Oracle iLearning 5.2.1 and 6.0, with the vulnerability located in the iLearning component’s Learner Pages. The impact is partial integrity loss and requires network access with no authentication according to the NVD entry; the vectors are described as unknown. No concrete ro...
CVE-2016-0508
CVE-2016-0508 affects Oracle iLearning 6.0 and 6.1 (Oracle iLearning Learner Administration component). The connected records confirm an unspecified vulnerability that could let remote attackers affect integrity via unknown vectors; exact root cause, affected subcomponents, exploit details, and r...
CVE-2018-3146
Vulnerability summary: CVE-2018-3146 affects Oracle iLearning (subcomponent: Learner Administration) for versions 6.1 and 6.2. An unauthenticated attacker with network access via HTTP can compromise iLearning, with human interaction required . Impact includes potential unauthorized access to data...
CVE-2018-2989
The CVE-2018-2989 issue affects Oracle iLearning, specifically the Learner Administration subcomponent in version 6.2. It is exploitable via HTTP over the network by an unauthenticated attacker and requires user interaction, potentially granting unauthorized access to Oracle iLearning data and en...
CVE-2013-5845
CVE-2013-5845 describes an unspecified vulnerability in the Oracle iLearning component of Oracle iLearning 5.2.1 and 6.0, allowing remote attackers to affect integrity via unknown vectors related to Learner Administration. The connected documents do not provide concrete exploit details, exact roo...
CVE-2013-5822
CVE-2013-5822 affects Oracle iLearning 5.2.1 and 6.0. The connected records indicate an unspecified vulnerability in the Oracle iLearning component with remote access possible via Learner Administration, impacting confidentiality, integrity, and availability. The details do not specify the root c...