Filter
Oracle Banking ApisPossible limited path traversal vulnerabily in Apache Commons IO
5.8
First published (updated )
Oracle REST Data ServicesPotential XSS vulnerability in jQuery
6.9
First published (updated )
Oracle Application Testing SuiteXSS, Input Validation
7.5
First published (updated )
Oracle Utilities FrameworkA flaw was found in the Apache Commons BeanUtils, where the class property in PropertyUtilsBean is n…
7.5
First published (updated )
Oracle Retail Integration BusApache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/rh-sso7-keycloakHTTP fails to validate against control chars in header names which may lead to HTTP request smuggling
6.5
First published (updated )
Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `of` option of the `.position()` util
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget
7.2
First published (updated )
Oracle Communications Unified Inventory ManagementA Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack
9.8
First published (updated )
Oracle Communications Unified Inventory ManagementXStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos)
7.8
First published (updated )
Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack
9.1
First published (updated )
Oracle Communications Unified Inventory ManagementXStream is vulnerable to a Remote Command Execution attack
9.9
First published (updated )
Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack
9.8
First published (updated )
Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack
9.8
First published (updated )
Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack
9.8
First published (updated )
Oracle Communications Unified Inventory ManagementXStream can cause a Denial of Service
7.5
First published (updated )
Oracle Communications Unified Inventory ManagementA Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Retail Xstore Point of ServiceRemote Code Execution in XStream
9.3
First published (updated )
Oracle Communications Diameter Signaling RouterLegion of the Bouncy Castle Java Cryptography APIs could allow a remote attacker to execute arbitrar…
9.8
First published (updated )
Oracle Banking PlatformOracle ADF Faces Deserialization of Untrusted Data Remote Code Execution Vulnerability
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Utilities Network Management SystemVulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS…
7.5
First published (updated )
Oracle Financial Services Analytical Applications InfrastructureFasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code b…
9.8
First published (updated )
Redhat Jboss Enterprise Application PlatformInput Validation
9.8
First published (updated )
FasterXML jackson-databindAn unsafe deserialization vulnerability was found due to incomplete blacklisting of the unsafe eleme…
9.8
First published (updated )
Oracle Banking PlatformiTMSTransporter. Multiple issues were addressed with updating FasterXML jackson-databind and Apache …
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.