Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

oracle retail invoice matching 14.0 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2021-36373
When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant before 1.9.16 and 1.10.11 were aff...
Apache AntOracle Retail Store Inventory Management 14.1Oracle Enterprise Repository 11.1.1.7.0Oracle Retail Back Office 14.1Oracle Retail Back Office 14.0Oracle Utilities Framework 4.2.0.3.0Oracle Utilities Framework 4.2.0.2.0Oracle Retail Central Office 14.0Oracle Retail Central Office 14.1Oracle Primavera Unifier 18.8Oracle Retail Point-of-service 14.1Oracle Retail Point-of-service 14.0Oracle Retail Predictive Application Server 15.0.3Oracle Primavera UnifierOracle Utilities Framework 4.4.0.0.0Oracle Agile Plm 9.3.6Oracle Communications Unified Inventory Management 7.4.0Oracle Retail Store Inventory Management 16.0Oracle Primavera Unifier 19.12Oracle Utilities FrameworkOracle Utilities Framework 4.4.0.2.0Oracle Communications Unified Inventory Management 7.3.0
4.3
CVSSv2
CVE-2021-36374
When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Commonly used derived formats ...
Apache AntOracle Retail Store Inventory Management 14.1Oracle Enterprise Repository 11.1.1.7.0Oracle Retail Back Office 14.1Oracle Retail Back Office 14.0Oracle Utilities Framework 4.2.0.3.0Oracle Utilities Framework 4.2.0.2.0Oracle Retail Central Office 14.0Oracle Retail Central Office 14.1Oracle Primavera Unifier 18.8Oracle Retail Point-of-service 14.1Oracle Retail Point-of-service 14.0Oracle Retail Predictive Application Server 15.0.3Oracle Primavera UnifierOracle Utilities Framework 4.4.0.0.0Oracle Agile Plm 9.3.6Oracle Communications Unified Inventory Management 7.4.0Oracle Retail Store Inventory Management 16.0Oracle Primavera Unifier 19.12Oracle Utilities FrameworkOracle Utilities Framework 4.4.0.2.0Oracle Communications Unified Inventory Management 7.3.0
4
CVSSv2
CVE-2021-2017
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy User Delegation). Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to c...
Oracle Enterprise Data Quality 11.1.1.9.0Oracle Enterprise Data Quality 12.2.1.3.0Oracle Retail Invoice Matching 13.2Oracle Retail Invoice Matching 14.0Oracle Retail Invoice Matching 14.1Oracle User Management 12.1.3Oracle User Management
3.6
CVSSv2
CVE-2020-5421
In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jsessionid path parameter.
Vmware Spring FrameworkOracle Flexcube Private Banking 12.1.0Oracle Flexcube Private Banking 12.0.0Oracle Weblogic Server 12.1.3.0.0Oracle Insurance Rules Palette 10.2.0Oracle Weblogic Server 10.3.6.0.0Oracle Weblogic Server 12.2.1.3.0Oracle Endeca Information Discovery Integrator 3.2.0Oracle Retail Predictive Application Server 14.1Oracle Retail Order Broker 15.0Oracle Retail Order Broker 16.0Oracle Retail Integration Bus 14.1.3Oracle Retail Returns Management 14.1Oracle Insurance Policy Administration 10.2Oracle Enterprise Data Quality 12.2.1.3.0Oracle Communications Unified Inventory Management 7.3.4Oracle Communications Unified Inventory Management 7.3.5Oracle Retail Invoice Matching 14.0Oracle Retail Invoice Matching 14.1Oracle Fusion Middleware 12.2.1.3.0Oracle Weblogic Server 12.2.1.4.0Oracle Fusion Middleware 12.2.1.4.0
7.5
CVSSv2
CVE-2019-10086
In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an malicious user to access the classloader via the class property available on all Java objects. We, however were not using this by default characteristic of th...
Apache Commons BeanutilsApache Nifi 1.14.0Apache Nifi 1.15.0Debian Debian Linux 8.0Opensuse Leap 15.0Opensuse Leap 15.1Fedoraproject Fedora 30Fedoraproject Fedora 31Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Server Aus 7.7Redhat Enterprise Linux Server Tus 7.7Redhat Enterprise Linux Eus 7.7Redhat Jboss Enterprise Application Platform 7.2.0Oracle Retail Xstore Point Of Service 15.0Oracle Flexcube Private Banking 12.1.0Oracle Banking Platform 2.4.0Oracle Retail Xstore Point Of Service 7.1Oracle Flexcube Private Banking 12.0.0Oracle Service Bus 11.1.1.9.0Oracle Fusion Middleware 11.1.1.9
5
CVSSv2
CVE-2018-15756
Spring Framework, version 5.1, versions 5.0.x before 5.0.10, versions 4.3.x before 4.3.20, and older unsupported versions on the 4.2.x branch provide support for range requests when serving static resources through the ResourceHttpRequestHandler, or starting in 5.0 when an annota...
Vmware Spring FrameworkVmware Spring Framework 5.1.0Oracle Flexcube Private Banking 12.1.0Oracle Insurance Policy Administration J2ee 10.2.0Oracle Retail Xstore Point Of Service 7.1Oracle Weblogic Server 12.1.3.0.0Oracle Retail Invoice Matching 13.0Oracle Flexcube Private Banking 12.0.1Oracle Primavera Gateway 16.2Oracle Primavera Gateway 15.2Oracle Retail Invoice Matching 12.0Oracle Flexcube Private Banking 12.0.3Oracle Insurance Rules Palette 10.2.0Oracle Retail Service Backbone 15.0Oracle Retail Integration Bus 15.0Oracle Weblogic Server 10.3.6.0.0Oracle Weblogic Server 12.2.1.3.0Oracle Communications Unified Inventory Management 7.3Oracle Enterprise Manager Ops Center 12.3.3Oracle Webcenter Sites 12.2.1.3.0Oracle Endeca Information Discovery Integrator 3.2.0Oracle Insurance Rules Palette 10.0
9
CVSSv2
CVE-2016-0635
Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2; the Oracle Health Sciences Information Manager component in Oracle Health Sciences Applications 1.2.8.3, 2.0.2.3, and 3.0.1.0; the Oracle...
Oracle Insurance Policy Administration J2ee 9.7.1Oracle Insurance Policy Administration J2ee 10.0.1Oracle Insurance Rules Palette 10.2.0Oracle Insurance Rules Palette 10.2.2Oracle Retail Integration Bus 15.0Oracle Insurance Policy Administration J2ee 9.6.1Oracle Insurance Rules Palette 10.0.1Oracle Insurance Rules Palette 10.1.2Oracle Primavera P6 Enterprise Project Portfolio Management 15.2Oracle Primavera P6 Enterprise Project Portfolio Management 16.1Oracle Health Sciences Information Manager 3.0.1.0Oracle Enterprise Manager Ops Center 12.1.4Oracle Retail Order Broker Cloud Service 15.0Oracle DocumakerOracle Insurance Policy Administration J2ee 10.2.2Oracle Insurance Rules Palette 9.6.1Oracle Insurance Rules Palette 9.7.1Oracle Primavera P6 Enterprise Project Portfolio Management 8.4Oracle Primavera P6 Enterprise Project Portfolio Management 15.1Oracle Health Sciences Information Manager 1.2.8.3Oracle Health Sciences Information Manager 2.0.2.3Oracle Retail Order Broker Cloud Service 5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook