Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

oracle financial services behavior detection platform 8.0.8.1 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2023-21902
Vulnerability in the Oracle Financial Services Behavior Detection Platform product of Oracle Financial Services Applications (component: Application). The supported version that is affected is 8.0.8.1. Easily exploitable vulnerability allows low privileged attacker with network a...
Oracle Financial Services Behavior Detection Platform 8.0.8.1
5
CVSSv2
CVE-2020-36518
jackson-databind prior to 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.
Fasterxml Jackson-databindOracle Weblogic Server 12.2.1.3.0Oracle Commerce Platform 11.3.1Oracle Utilities Framework 4.3.0.5.0Oracle Utilities Framework 4.3.0.6.0Oracle Utilities Framework 4.4.0.0.0Oracle Weblogic Server 12.2.1.4.0Oracle Peoplesoft Enterprise Peopletools 8.58Oracle Primavera Unifier 19.12Oracle Sd-wan Edge 9.0Oracle Weblogic Server 14.1.1.0.0Oracle Coherence 14.1.1.0.0Oracle Utilities Framework 4.4.0.2.0Oracle Global Lifecycle Management Nextgen Oui Framework 13.9.4.2.2Oracle Primavera Unifier 20.12Oracle Peoplesoft Enterprise Peopletools 8.59Oracle Primavera GatewayOracle Utilities Framework 4.4.0.3.0Oracle Sd-wan Edge 9.1Oracle Commerce Platform 11.3.0Oracle Commerce Platform 11.3.2Oracle Primavera Unifier 21.12
7.1
CVSSv2
CVE-2022-23437
There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads. This causes, the XercesJ XML parser to wait in an infinite loop, which may sometimes consume system resources for prolonged duration. This vulner...
Apache Xerces-jOracle Ilearning 6.2Oracle Flexcube Universal Banking 12.4.0Oracle Weblogic Server 12.2.1.3.0Oracle Agile Plm 9.3.6Oracle Weblogic Server 12.2.1.4.0Oracle Peoplesoft Enterprise Peopletools 8.58Oracle Weblogic Server 14.1.1.0.0Oracle Retail Bulk Data Integration 16.0.3.0Oracle Retail Merchandising System 16.0.3Oracle Global Lifecycle Management Nextgen Oui Framework 13.9.4.2.2Oracle Agile Engineering Data Management 6.2.1.0Oracle Retail Service Backbone 16.0.3Oracle Retail Financial Integration 16.0.3Oracle Retail Integration Bus 16.0.3Oracle Peoplesoft Enterprise Peopletools 8.59Oracle Retail Service Backbone 15.0.3.1Oracle Retail Service Backbone 14.1.3.2Oracle Financial Services Enterprise Case Management 8.0.7.2.0Oracle Banking Party Management 2.7.0Oracle Retail Merchandising System 19.0.1Oracle Retail Integration Bus 14.1.3.2
4.3
CVSSv2
CVE-2021-38153
Some components in Apache Kafka use `Arrays.equals` to validate a password or key, which is vulnerable to timing attacks that make brute force attacks for such credentials more likely to be successful. Users should upgrade to 2.8.1 or higher, or 3.0.0 or higher where this vulnera...
Apache KafkaApache Kafka 2.8.0Quarkus QuarkusOracle Primavera Unifier 18.8Oracle Primavera Unifier 19.12Oracle Primavera Unifier 20.12Oracle Primavera Unifier 21.12Oracle Financial Services Enterprise Case Management 8.0.8.1Oracle Financial Services Enterprise Case Management 8.1.1.0Oracle Financial Services Enterprise Case Management 8.1.1.1Oracle Financial Services Behavior Detection Platform 8.1.2.0Oracle Financial Services Behavior Detection Platform 8.1.1.1Oracle Financial Services Behavior Detection Platform 8.1.1.0Oracle Financial Services Enterprise Case Management 8.0.7.1Oracle Financial Services Enterprise Case Management 8.0.8.0Oracle Financial Services Behavior Detection PlatformOracle Communications Cloud Native Core Policy 1.15.0Oracle Financial Services Enterprise Case Management 8.0.7.2Oracle Financial Services Analytical Applications InfrastructureOracle Communications Brm - Elastic Charging Engine 12.0.0.5.0Oracle Communications Brm - Elastic Charging Engine
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651CVE-2024-34255elevation of privilegeCVE-2024-25529CVE-2024-4671NULL pointer dereferenceCVE-2024-25527template injectionCVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook