Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

hitachi ops center automator vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2020-36652
Incorrect Default Permissions vulnerability in Hitachi Automation Director on Linux, Hitachi Infrastructure Analytics Advisor on Linux (Hitachi Infrastructure Analytics Advisor, Analytics probe server components), Hitachi Ops Center Automator on Linux, Hitachi Ops Center Analyzer...
Hitachi Automation DirectorHitachi Infrastructure Analytics AdvisorHitachi Ops Center AnalyzerHitachi Ops Center AutomatorHitachi Ops Center Viewpoint
5
CVSSv2
CVE-2021-35515
When reading a specially crafted 7Z archive, the construction of the list of codecs that decompress an entry can result in an infinite loop. This could be used to mount a denial of service attack against services that use Compress' sevenz package.
Apache Commons CompressNetapp Oncommand Insight -Netapp Active Iq Unified Manager -Oracle Flexcube Universal Banking 12.4.0Oracle Business Process Management Suite 12.2.1.3.0Oracle Peoplesoft Enterprise Peopletools 8.57Oracle Primavera Unifier 18.8Oracle Primavera UnifierOracle Banking Digital Experience 19.1Oracle Flexcube Universal BankingOracle Peoplesoft Enterprise Peopletools 8.58Oracle Primavera Unifier 19.12Oracle Banking Digital Experience 20.1Oracle Primavera Unifier 20.12Oracle Business Process Management Suite 12.2.1.4.0Oracle Communications Messaging Server 8.1Oracle Commerce Guided Search 11.3.2Oracle Peoplesoft Enterprise Peopletools 8.59Oracle Insurance Policy Administration 11.3.0Oracle Insurance Policy Administration 11.0.2Oracle Financial Services Enterprise Case Management 8.0.8.1.0Oracle Financial Services Enterprise Case Management 8.0.7.2.0
5
CVSSv2
CVE-2021-35516
When reading a specially crafted 7Z archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' sevenz pa...
Apache Commons CompressNetapp Oncommand Insight -Netapp Active Iq Unified Manager -Oracle Flexcube Universal Banking 12.4.0Oracle Webcenter Portal 12.2.1.3.0Oracle Business Process Management Suite 12.2.1.3.0Oracle Peoplesoft Enterprise Peopletools 8.57Oracle Primavera Unifier 18.8Oracle Primavera UnifierOracle Banking Digital Experience 19.1Oracle Flexcube Universal BankingOracle Peoplesoft Enterprise Peopletools 8.58Oracle Primavera Unifier 19.12Oracle Webcenter Portal 12.2.1.4.0Oracle Banking Digital Experience 19.2Oracle Banking Digital Experience 20.1Oracle Primavera Unifier 20.12Oracle Business Process Management Suite 12.2.1.4.0Oracle Communications Messaging Server 8.1Oracle Commerce Guided Search 11.3.2Oracle Peoplesoft Enterprise Peopletools 8.59Oracle Insurance Policy Administration 11.3.0
5
CVSSv2
CVE-2021-35517
When reading a specially crafted TAR archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' tar pack...
Apache Commons CompressNetapp Oncommand Insight -Netapp Active Iq Unified Manager -Oracle Webcenter Portal 12.2.1.3.0Oracle Business Process Management Suite 12.2.1.3.0Oracle Peoplesoft Enterprise Peopletools 8.57Oracle Primavera Unifier 18.8Oracle Primavera UnifierOracle Banking Digital Experience 19.1Oracle Flexcube Universal BankingOracle Peoplesoft Enterprise Peopletools 8.58Oracle Primavera Unifier 19.12Oracle Webcenter Portal 12.2.1.4.0Oracle Banking Digital Experience 19.2Oracle Banking Digital Experience 20.1Oracle Primavera Unifier 20.12Oracle Business Process Management Suite 12.2.1.4.0Oracle Communications Messaging Server 8.1Oracle Commerce Guided Search 11.3.2Oracle Peoplesoft Enterprise Peopletools 8.59Oracle Insurance Policy Administration 11.3.0Oracle Insurance Policy Administration 11.0.2
5
CVSSv2
CVE-2021-36090
When reading a specially crafted ZIP archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' zip pack...
Apache Commons CompressOracle Webcenter Portal 12.2.1.3.0Oracle Business Process Management Suite 12.2.1.3.0Oracle Peoplesoft Enterprise Peopletools 8.57Oracle Banking Platform 2.6.2Oracle Primavera Unifier 18.8Oracle Primavera UnifierOracle Communications Unified Inventory Management 7.4.0Oracle Banking Digital Experience 19.1Oracle Flexcube Universal BankingOracle Peoplesoft Enterprise Peopletools 8.58Oracle Primavera Unifier 19.12Oracle Webcenter Portal 12.2.1.4.0Oracle Banking Digital Experience 19.2Oracle Banking Digital Experience 20.1Oracle Banking Platform 2.7.1Oracle Banking Platform 2.9.0Oracle Primavera Unifier 20.12Oracle Business Process Management Suite 12.2.1.4.0Oracle Communications Messaging Server 8.1Oracle Commerce Guided Search 11.3.2Oracle Peoplesoft Enterprise Peopletools 8.59
5
CVSSv2
CVE-2020-36518
jackson-databind prior to 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.
Fasterxml Jackson-databindOracle Weblogic Server 12.2.1.3.0Oracle Commerce Platform 11.3.1Oracle Utilities Framework 4.3.0.5.0Oracle Utilities Framework 4.3.0.6.0Oracle Utilities Framework 4.4.0.0.0Oracle Weblogic Server 12.2.1.4.0Oracle Peoplesoft Enterprise Peopletools 8.58Oracle Primavera Unifier 19.12Oracle Sd-wan Edge 9.0Oracle Weblogic Server 14.1.1.0.0Oracle Coherence 14.1.1.0.0Oracle Utilities Framework 4.4.0.2.0Oracle Global Lifecycle Management Nextgen Oui Framework 13.9.4.2.2Oracle Primavera Unifier 20.12Oracle Peoplesoft Enterprise Peopletools 8.59Oracle Primavera GatewayOracle Utilities Framework 4.4.0.3.0Oracle Sd-wan Edge 9.1Oracle Commerce Platform 11.3.0Oracle Commerce Platform 11.3.2Oracle Primavera Unifier 21.12
9.3
CVSSv2
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0Apache Log4jSiemens Sppa-t3000 Ses3000 FirmwareSiemens Logo\\! Soft ComfortSiemens Spectrum Power 4 4.70Siemens Spectrum Power 4Siemens Siveillance Control ProSiemens Energyip Prepay 3.7Siemens Energyip Prepay 3.8Siemens Siveillance Identity 1.6Siemens Siveillance Identity 1.5Siemens Siveillance CommandSiemens Sipass Integrated 2.85Siemens Sipass Integrated 2.80Siemens Head-end System Universal Device Integration SystemSiemens Gma-managerSiemens Energyip 8.5Siemens Energyip 8.6Siemens Energyip 8.7Siemens Energyip 9.0Siemens Energy Engage 3.1Siemens E-car Operation Center
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook