Iplanet Web Server@* Security Vulnerabilities and Issues — Iplanet Web Server@* CVE List

Lucene search

OracleIplanet Web Server*

3 matches found

CVE•added 2020/05/10 11:15 p.m.•89 views

CVE-2020-9315

** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** Oracle iPlanet Web Server 7.0.x has Incorrect Access Control for admingui/version URIs in the Administration console, as demonstrated by unauthenticated read access to encryption keys. NOTE: a related support policy can be found in the www.oracle.com refere...

7.5CVSS7.2AI score0.87551EPSS

CVE•added 2020/05/10 11:15 p.m.•82 views

CVE-2020-9314

** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** Oracle iPlanet Web Server 7.0.x allows image injection in the Administration console via the productNameSrc parameter to an admingui URI. This issue exists because of an incomplete fix for CVE-2012-0516. NOTE: a related support policy can be found in the ww...

4.9CVSS5.4AI score0.33176EPSS

CVE•added 2017/10/19 5:29 p.m.•56 views

CVE-2017-10055

Vulnerability in the Oracle iPlanet Web Server component of Oracle Fusion Middleware (subcomponent: Admin Graphical User Interface). The supported version that is affected is 7.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iPla...

6.1CVSS5.7AI score0.00389EPSS