Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

oracle http server 12.1.3.0 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2016-3482
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.9 and 12.1.3.0 allows remote attackers to affect confidentiality via vectors related to SSL/TLS Module....
Oracle Http Server 12.1.3.0Oracle Http Server 11.1.1.9
5
CVSSv2
CVE-2020-5360
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems....
Dell Bsafe Micro-edition-suiteOracle Database 12.1.0.2Oracle Database 12.2.0.1Oracle Database 18cOracle Database 19cOracle Http Server 11.1.1.9.0Oracle Http Server 12.1.3.0Oracle Http Server 12.2.1.4.0Oracle Security Service 11.1.1.9.0Oracle Security Service 12.1.3.0Oracle Security Service 12.2.1.4.0Oracle Weblogic Server Proxy Plug-in 11.1.1.9.0Oracle Weblogic Server Proxy Plug-in 12.1.3.0Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
5
CVSSv2
CVE-2013-6438
The dav_xml_get_cdata function in main/util.c in the mod_dav module in the Apache HTTP Server before 2.4.8 does not properly remove whitespace characters from CDATA sections, which allows remote attackers to cause a denial of service (daemon crash) via a crafted DAV WRITE...
Apache Http ServerOracle Http Server 12.1.3.0Oracle Http Server 12.1.2.0Oracle Http Server 11.1.1.7.0Oracle Http Server 10.1.3.5.0Canonical Ubuntu Linux 13.10Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04
5
CVSSv2
CVE-2014-0098
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon crash) via a crafted cookie that is not properly handled during truncation....
Apache Http ServerOracle Secure Global Desktop 4.71Oracle Http Server 12.1.3.0Oracle Secure Global Desktop 4.63Oracle Http Server 12.1.2.0Oracle Http Server 11.1.1.7.0Oracle Http Server 10.1.3.5.0Oracle Secure Global Desktop 5.0Oracle Secure Global Desktop 5.1Canonical Ubuntu Linux 13.10Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04
6.8
CVSSv2
CVE-2014-0226
Race condition in the mod_status module in the Apache HTTP Server before 2.4.10 allows remote attackers to cause a denial of service (heap-based buffer overflow), or possibly obtain sensitive credential information or execute arbitrary code, via a crafted request that triggers...
Apache Http ServerDebian Debian Linux 8.0Debian Debian Linux 7.0Redhat Jboss Enterprise Application Platform 6.0.0Redhat Jboss Enterprise Application Platform 6.4.0Oracle Secure Global Desktop 4.71Oracle Http Server 12.1.3.0Oracle Secure Global Desktop 4.63Oracle Enterprise Manager Ops Center 12.1.4Oracle Http Server 12.1.2.0Oracle Http Server 11.1.1.7.0Oracle Http Server 10.1.3.5.0Oracle Secure Global Desktop 5.0Oracle Secure Global Desktop 5.1Oracle Enterprise Manager Ops Center 11.1.3
4
CVSSv2
CVE-2019-2398
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Deployment). Supported versions that are affected are 10.3.6.0, 12.1.3.0 and 12.2.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via...
Oracle Weblogic Server 12.1.3.0Oracle Weblogic Server 10.3.6.0Oracle Weblogic Server 12.2.1.3
6.5
CVSSv2
CVE-2019-2452
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0 and 12.2.1.3. Easily exploitable vulnerability allows high privileged attacker with network access...
Oracle Weblogic Server 12.2.1.3Oracle Weblogic Server 12.1.3.0Oracle Weblogic Server 10.3.6.0
5
CVSSv2
CVE-2013-5704
The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass "RequestHeader unset" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states "this is not a security issue...
Apache Http Server 2.2.0Apache Http Server 2.2.2Apache Http Server 2.2.3Apache Http Server 2.2.4Apache Http Server 2.2.5Apache Http Server 2.2.6Apache Http Server 2.2.8Apache Http Server 2.2.9Apache Http Server 2.2.10Apache Http Server 2.2.11Apache Http Server 2.2.12Apache Http Server 2.2.13Apache Http Server 2.2.14Apache Http Server 2.2.15Apache Http Server 2.2.16Apache Http Server 2.2.17Apache Http Server 2.2.18Apache Http Server 2.2.19Apache Http Server 2.2.20Apache Http Server 2.2.21Apache Http Server 2.2.22Apache Http Server 2.2.23Apache Http Server 2.2.24Apache Http Server 2.2.25Apache Http Server 2.2.26Apache Http Server 2.2.27Apache Http Server 2.4.1Apache Http Server 2.4.2Apache Http Server 2.4.3Apache Http Server 2.4.4Apache Http Server 2.4.6Apache Http Server 2.4.7Apache Http Server 2.4.9Apache Http Server 2.4.10Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Eus 7.3Redhat Enterprise Linux Eus 7.4Redhat Enterprise Linux Eus 7.5Redhat Enterprise Linux Eus 7.6Redhat Enterprise Linux Eus 7.7Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Server Aus 7.3Redhat Enterprise Linux Server Aus 7.4Redhat Enterprise Linux Server Aus 7.6Redhat Enterprise Linux Server Aus 7.7Redhat Enterprise Linux Server Tus 7.3Redhat Enterprise Linux Server Tus 7.6Redhat Enterprise Linux Server Tus 7.7Redhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Workstation 7.0Redhat Jboss Enterprise Web Server 3.0.0Redhat Jboss Enterprise Web Server 2.0.0Oracle Enterprise Manager Ops CenterOracle Enterprise Manager Ops Center 12.1.4Oracle Enterprise Manager Ops Center 12.2.0Oracle Enterprise Manager Ops Center 12.2.1Oracle Enterprise Manager Ops Center 12.3.0Oracle Http Server 10.1.3.5.0Oracle Http Server 11.1.1.7.0Oracle Http Server 12.1.2.0Oracle Http Server 12.1.3.0Oracle Linux 6Oracle Solaris 11.2Apple Mac Os XApple Mac Os X ServerCanonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 14.10
5.1
CVSSv2
CVE-2013-1862
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a...
Apache Http ServerRedhat Jboss Enterprise Application Platform 6.0.0Redhat Jboss Enterprise Application Platform 6.4.0Oracle Http Server 12.1.3.0Oracle Http Server 12.1.2.0Oracle Http Server 11.1.1.7.0Oracle Http Server 10.1.3.5.0Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Server Aus 6.4Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Server Aus 5.9Redhat Enterprise Linux Eus 5.9Redhat Enterprise Linux Eus 6.4Canonical Ubuntu Linux 13.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04Opensuse Opensuse 12.3Opensuse Opensuse 11.4Opensuse Opensuse 12.2
7.8
CVSSv2
CVE-2018-20843
In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks)....
Libexpat Project LibexpatCanonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 18.10Canonical Ubuntu Linux 19.04Debian Debian Linux 8.0Debian Debian Linux 9.0Fedoraproject Fedora 29Fedoraproject Fedora 30Opensuse Leap 15.0Opensuse Leap 15.1Oracle Hospitality Res 3700Oracle Http Server 12.1.3.0Oracle Http Server 12.2.1.4.0Oracle Outside In Technology 8.5.4Oracle Outside In Technology 8.5.5Tenable Nessus
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30758CSRFCVE-2021-44228CVE-2023-33633XPath injectionCVE-2023-33735CVE-2023-29336CVE-2023-34312cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook