Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

oracle application testing suite 12.5.0.3 vulnerabilities and exploits

(subscribe to this query)

6.3
CVSSv3
CVE-2018-3305
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite (subcomponent: Load Testing for Web Apps). Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows low...
Oracle Application Testing Suite 13.1.0.1Oracle Application Testing Suite 13.3.0.1Oracle Application Testing Suite 12.5.0.3Oracle Application Testing Suite 13.2.0.1
6.5
CVSSv3
CVE-2018-3304
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite (subcomponent: Load Testing for Web Apps). Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows...
Oracle Application Testing Suite 12.5.0.3Oracle Application Testing Suite 13.1.0.1Oracle Application Testing Suite 13.2.0.1Oracle Application Testing Suite 13.3.0.1
7.5
CVSSv3
CVE-2020-2673
Vulnerability in the Oracle Application Testing Suite product of Oracle Enterprise Manager (component: Oracle Flow Builder). Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows unauthenticated attacker with...
Oracle Application Testing Suite 12.5.0.3Oracle Application Testing Suite 13.1.0.1Oracle Application Testing Suite 13.2.0.1Oracle Application Testing Suite 13.3.0.1
5.3
CVSSv3
CVE-2017-3311
Vulnerability in the Application Testing Suite component of Oracle Enterprise Manager Grid Control (subcomponent: Test Manager for Web Apps). Supported versions that are affected are 12.5.0.3, 12.5.0.2 and 12.4.0.2. Easily exploitable vulnerability allows unauthenticated...
Oracle Application Testing Suite 12.5.0.2Oracle Application Testing Suite 12.5.0.3Oracle Application Testing Suite 12.4.0.2
NA
CVE-2015-7940
The Bouncy Castle Java library before 1.51 does not validate a point is withing the elliptic curve, which makes it easier for remote attackers to obtain private keys via a series of crafted elliptic curve Diffie Hellman (ECDH) key exchanges, aka an "invalid curve...
Opensuse Opensuse 13.2Opensuse Leap 42.1Opensuse Opensuse 13.1Bouncycastle Bouncy Castle Crypto PackageOracle Virtual Desktop Infrastructure 3.5.2Oracle Enterprise Manager Ops Center 12.1.4Oracle Peoplesoft Enterprise Peopletools 8.55Oracle Peoplesoft Enterprise Peopletools 8.54Oracle Enterprise Manager Ops Center 12.2.2Oracle Application Testing Suite 12.5.0.2Oracle Application Testing Suite 12.5.0.3Oracle Application Testing Suite 12.5.0.1
9.8
CVSSv3
CVE-2018-1275
Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.16 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker)...
Vmware Spring FrameworkOracle Primavera Gateway 16.2Oracle Primavera Gateway 15.2Oracle Application Testing Suite 12.5.0.3Oracle Retail Open Commerce Platform 6.0.1Oracle Application Testing Suite 13.1.0.1Oracle Application Testing Suite 13.2.0.1Oracle Application Testing Suite 13.3.0.1Oracle Communications Diameter Signaling RouterOracle Communications Performance Intelligence CenterOracle Insurance Calculation Engine 10.2Oracle Retail Customer Insights 16.0Oracle Retail Predictive Application Server 14.0Oracle Retail Predictive Application Server 14.1Oracle Retail Predictive Application Server 15.0Oracle Health Sciences Information Manager 3.0Oracle Healthcare Master Person Index 3.0Oracle Communications Converged Application ServerOracle Service Architecture Leveraging Tuxedo 12.1.3.0.0Oracle Service Architecture Leveraging Tuxedo 12.2.2.0.0Oracle Insurance Rules Palette 10.0Oracle Insurance Rules Palette 10.2Oracle Communications Services GatekeeperOracle Healthcare Master Person Index 4.0Oracle Retail Customer Insights 15.0Oracle Tape Library Acsls 8.4Oracle Retail Predictive Application Server 16.0Oracle Retail Order Broker 5.1Oracle Retail Order Broker 5.2Oracle Insurance Calculation Engine 10.1.1Oracle Insurance Rules Palette 11.1Oracle Primavera Gateway 17.12Oracle Goldengate For Big Data 12.2.0.1Oracle Retail Order Broker 16.0Oracle Retail Open Commerce Platform 5.3.0Oracle Retail Open Commerce Platform 6.0.0Oracle Insurance Rules Palette 10.1Oracle Insurance Rules Palette 11.0Oracle Goldengate For Big Data 12.3.2.1Oracle Retail Order Broker 15.0Oracle Insurance Calculation Engine 10.2.1Oracle Big Data Discovery 1.6.0Oracle Goldengate For Big Data 12.3.1.1
5.9
CVSSv3
CVE-2018-11040
Spring Framework, versions 5.0.x prior to 5.0.7 and 4.3.x prior to 4.3.18 and older unsupported versions, allows web applications to enable cross-domain requests via JSONP (JSON with Padding) through AbstractJsonpResponseBodyAdvice for REST controllers and...
Vmware Spring FrameworkOracle Flexcube Private Banking 2.2.0.1Oracle Retail Xstore Point Of Service 7.1Oracle Application Testing Suite 12.5.0.3Oracle Hospitality Guest Access 4.2.0Oracle Hospitality Guest Access 4.2.1Oracle Weblogic Server 12.2.1.3.0Oracle Enterprise Manager Ops Center 12.3.3Oracle Endeca Information Discovery Integrator 3.2.0Oracle Endeca Information Discovery Integrator 3.1.0Oracle Agile Product Lifecycle Management 9.3.3Oracle Agile Product Lifecycle Management 9.3.4Oracle Agile Product Lifecycle Management 9.3.5Oracle Application Testing Suite 13.1.0.1Oracle Application Testing Suite 13.2.0.1Oracle Application Testing Suite 13.3.0.1Oracle Communications Online Mediation Controller 6.1Oracle Communications Services GatekeeperOracle Healthcare Master Person Index 3.0Oracle Healthcare Master Person Index 4.0Oracle Insurance Rules Palette 10.0Oracle Insurance Rules Palette 10.2Oracle Micros Lucas 2.9.5Oracle Retail Clearance Optimization Engine 14.0.5Oracle Retail Customer Insights 15.0Oracle Retail Customer Insights 16.0Oracle Retail Predictive Application Server 16.0Oracle Utilities Network Management System 1.12.0.3Oracle Communications Network IntegrityOracle Communications Unified Inventory Management 7.3.2Oracle Communications Unified Inventory Management 7.3.4Oracle Communications Unified Inventory Management 7.3.5Oracle Communications Unified Inventory Management 7.4.0Oracle Enterprise Manager 13.2Oracle Flexcube Private Banking 2.0.0.0Oracle Flexcube Private Banking 12.0.1.0Oracle Flexcube Private Banking 12.0.3.0Oracle Flexcube Private Banking 12.1.0.0Oracle Insurance Calculation EngineOracle Mysql Enterprise MonitorOracle Product Lifecycle Management 9.3.6Oracle Retail Advanced Inventory Planning 15.0Oracle Retail Markdown Optimization 13.4.4Oracle Retail Predictive Application Server 14.0.3.26Oracle Retail Predictive Application Server 14.1.3.37Oracle Retail Predictive Application Server 15.0.3.100Oracle Retail Service Backbone 16.0.1Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2019-2904
Vulnerability in the Oracle JDeveloper and ADF product of Oracle Fusion Middleware (component: ADF Faces). Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...
Oracle Application Testing Suite 12.5.0.3Oracle Application Testing Suite 13.1.0.1Oracle Application Testing Suite 13.2.0.1Oracle Application Testing Suite 13.3.0.1Oracle Banking Enterprise Collections 2.7.0Oracle Banking Enterprise Collections 2.8.0Oracle Banking Enterprise Originations 2.7.0Oracle Banking Enterprise Originations 2.8.0Oracle Banking Enterprise Product Manufacturing 2.7.0Oracle Banking Enterprise Product Manufacturing 2.8.0Oracle Banking Platform 2.4.0Oracle Banking Platform 2.4.1Oracle Banking Platform 2.5.0Oracle Banking Platform 2.6.0Oracle Banking Platform 2.6.1Oracle Banking Platform 2.6.2Oracle Banking Platform 2.7.0Oracle Banking Platform 2.7.1Oracle Banking Platform 2.9.0Oracle Business Process Management Suite 12.2.1.3.0Oracle Business Process Management Suite 12.2.1.4.0Oracle Clinical 5.2Oracle Communications Diameter Signaling RouterOracle Communications Network IntegrityOracle Communications Service Broker 6.0Oracle Communications Service Broker 6.1Oracle Communications Services Gatekeeper 6.0Oracle Communications Services Gatekeeper 6.1Oracle Enterprise Repository 11.1.1.7.0Oracle Financial Services Lending And Leasing 12.5.0Oracle Financial Services Lending And LeasingOracle Financial Services Revenue Management And Billing Analytics 2.6Oracle Financial Services Revenue Management And Billing Analytics 2.7Oracle Financial Services Revenue Management And Billing Analytics 2.8Oracle Flexcube Private Banking 12.0.0Oracle Flexcube Private Banking 12.1.0Oracle Health Sciences Data Management Workbench 2.4Oracle Health Sciences Data Management Workbench 2.5Oracle Hyperion Planning 11.1.2.4Oracle Rapid Planning 12.1.3Oracle Retail Assortment Planning 15.0.3.0Oracle Retail Assortment Planning 16.0.3.0Oracle Retail Clearance Optimization Engine 13.4Oracle Retail Clearance Optimization Engine 14.0.3Oracle Retail Clearance Optimization Engine 14.0.5Oracle Retail Markdown Optimization 13.4Oracle Retail Sales Audit 15.0.3Oracle Retail Sales Audit 16.0.2
5.5
CVSSv3
CVE-2019-12415
In Apache POI up to 4.1.0, when using the tool XSSFExportToXml to convert user-provided Microsoft Excel documents, a specially crafted document can allow an attacker to read files from the local filesystem or from internal network resources via XML External Entity (XXE)...
Apache PoiOracle Application Testing Suite 12.5.0.3Oracle Application Testing Suite 13.1.0.1Oracle Application Testing Suite 13.2.0.1Oracle Application Testing Suite 13.3.0.1Oracle Banking Enterprise Originations 2.7.0Oracle Banking Enterprise Originations 2.8.0Oracle Banking Enterprise Product Manufacturing 2.7.0Oracle Banking Enterprise Product Manufacturing 2.8.0Oracle Banking Payments 14.0.0Oracle Banking Payments 14.1.0Oracle Banking Platform 2.4.0Oracle Banking Platform 2.4.1Oracle Banking Platform 2.5.0Oracle Banking Platform 2.6.0Oracle Banking Platform 2.6.1Oracle Banking Platform 2.6.2Oracle Banking Platform 2.7.0Oracle Banking Platform 2.7.1Oracle Banking Platform 2.9.0Oracle Big Data Discovery 1.6Oracle Communications Diameter Signaling Router Idih\\ Oracle Endeca Information Discovery Studio 3.2.0Oracle Enterprise Manager Base Platform 12.1.0.5Oracle Enterprise Manager Base Platform 13.3.0.0Oracle Enterprise Manager Base Platform 13.4.0.0Oracle Enterprise Repository 12.1.3.0.0Oracle Financial Services Analytical Applications InfrastructureOracle Financial Services Market Risk Measurement And Management 8.0.6Oracle Financial Services Market Risk Measurement And Management 8.0.8Oracle Flexcube Private Banking 12.0.0Oracle Flexcube Private Banking 12.1.0Oracle Hyperion Infrastructure Technology 11.1.2.4Oracle Instantis Enterprisetrack 17.1Oracle Instantis Enterprisetrack 17.2Oracle Instantis Enterprisetrack 17.3Oracle Insurance Policy Administration J2ee 11.0.2Oracle Insurance Policy Administration J2ee 11.1.0Oracle Insurance Policy Administration J2ee 11.2.0Oracle Insurance Rules Palette 10.2.0Oracle Insurance Rules Palette 10.2.4Oracle Insurance Rules Palette 11.0.2Oracle Insurance Rules Palette 11.1.0Oracle Insurance Rules Palette 11.2.0Oracle Jdeveloper 12.2.1.4.0Oracle Peoplesoft Enterprise Peopletools 8.57Oracle Peoplesoft Enterprise Peopletools 8.58Oracle Peoplesoft Enterprise Peopletools 8.59Oracle Primavera Gateway 17.12.6Oracle Primavera Gateway 18.8.8.1Oracle Primavera Unifier 16.1Oracle Primavera Unifier 16.2Oracle Primavera UnifierOracle Primavera Unifier 18.8Oracle Primavera Unifier 19.12Oracle Retail Clearance Optimization Engine 14.0Oracle Retail Order Broker 15.0Oracle Retail Order Broker 16.0Oracle Retail Predictive Application Server 15.0.3Oracle Retail Predictive Application Server 16.0.3Oracle Webcenter Portal 12.2.1.3.0Oracle Webcenter Portal 12.2.1.4.0Oracle Webcenter Sites 12.2.1.3.0Oracle Webcenter Sites 12.2.1.4.0
7.5
CVSSv3
CVE-2018-1272
Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, provide client-side support for multipart requests. When Spring MVC or Spring WebFlux server application (server A) receives input from a remote client, and then uses...
Vmware Spring FrameworkOracle Enterprise Manager Ops Center 12.2.2Oracle Primavera Gateway 16.2Oracle Primavera Gateway 15.2Oracle Application Testing Suite 12.5.0.3Oracle Retail Back Office 14.1Oracle Retail Back Office 14.0Oracle Enterprise Manager Ops Center 12.3.3Oracle Retail Open Commerce Platform 6.0.1Oracle Application Testing Suite 13.1.0.1Oracle Healthcare Master Person Index 3.0Oracle Healthcare Master Person Index 4.0Oracle Insurance Calculation Engine 10.2Oracle Application Testing Suite 13.2.0.1Oracle Health Sciences Information Manager 3.0Oracle Communications Converged Application ServerOracle Communications Diameter Signaling RouterOracle Communications Performance Intelligence CenterOracle Communications Services GatekeeperOracle Retail Customer Insights 15.0Oracle Retail Customer Insights 16.0Oracle Tape Library Acsls 8.4Oracle Application Testing Suite 13.3.0.1Oracle Insurance Rules Palette 10.0Oracle Insurance Rules Palette 10.2Oracle Retail Predictive Application Server 14.0Oracle Service Architecture Leveraging Tuxedo 12.2.2.0.0Oracle Service Architecture Leveraging Tuxedo 12.1.3.0.0Oracle Retail Integration Bus 15.0.2Oracle Retail Integration Bus 14.1.1Oracle Retail Integration Bus 14.1.2Oracle Retail Integration Bus 14.1.3Oracle Retail Predictive Application Server 15.0Oracle Retail Predictive Application Server 16.0Oracle Retail Order Broker 5.1Oracle Retail Order Broker 5.2Oracle Retail Order Broker 15.0Oracle Insurance Calculation Engine 10.2.1Oracle Primavera Gateway 17.12Oracle Big Data Discovery 1.6.0Oracle Goldengate For Big Data 12.2.0.1Oracle Retail Integration Bus 16.0.1Oracle Retail Integration Bus 15.0.1Oracle Retail Order Broker 16.0Oracle Retail Open Commerce Platform 6.0.0Oracle Insurance Calculation Engine 10.1.1Oracle Insurance Rules Palette 10.1Oracle Insurance Rules Palette 11.0Oracle Goldengate For Big Data 12.3.2.1Oracle Retail Integration Bus 14.0.1Oracle Retail Integration Bus 14.0.2Oracle Retail Integration Bus 14.0.3Oracle Retail Integration Bus 14.0.4Oracle Retail Integration Bus 16.0Oracle Insurance Rules Palette 11.1Oracle Retail Integration Bus 16.0.2Oracle Retail Integration Bus 15.0.0.1Oracle Retail Returns Management 14.0Oracle Retail Predictive Application Server 14.1Oracle Retail Open Commerce Platform 5.3.0Oracle Goldengate For Big Data 12.3.1.1Oracle Retail Returns Management 14.1Oracle Retail Point-of-sale 14.1Oracle Retail Point-of-sale 14.0Oracle Retail Central Office 14.0Oracle Retail Central Office 14.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
insecure direct object referenceCVE-2023-30736CVE-2023-39647CVE-2023-42793injectCVE-2023-20101CVE-2023-4497XXECVE-2023-5217
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook