Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle agile product lifecycle management 9.3.6 vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2017-10052
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: PCMServlet). Supported versions that are affected are 9.3.5 and 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise ...
Oracle Agile Product Lifecycle Management Framework 9.3.5
Oracle Agile Product Lifecycle Management Framework 9.3.6
516
VMScore
CVE-2017-10092
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Security). Supported versions that are affected are 9.3.5 and 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Or...
Oracle Agile Product Lifecycle Management Framework 9.3.6
Oracle Agile Product Lifecycle Management Framework 9.3.5
516
VMScore
CVE-2020-1935
In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some invalid HTTP headers to be parsed as valid. This led to a possibility of HTTP Request Smuggling if Tomcat was located be...
Apache Tomcat 9.0.0
Apache Tomcat
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 16.04
Opensuse Leap 15.1
Netapp Oncommand System Manager
Netapp Data Availability Services -
Oracle Transportation Management 6.3.7
Oracle Hospitality Guest Access 4.2.0
Oracle Hospitality Guest Access 4.2.1
Oracle Retail Order Broker 15.0
Oracle Agile Product Lifecycle Management 9.3.3
Oracle Agile Product Lifecycle Management 9.3.5
Oracle Agile Product Lifecycle Management 9.3.6
Oracle Instantis Enterprisetrack
Oracle Health Sciences Empirica Signal 7.3.3
Oracle Communications Instant Messaging Server 10.0.1.4.0
Oracle Communications Element Manager 8.2.0
Oracle Communications Element Manager 8.2.1
Oracle Communications Element Manager 8.1.1
384
VMScore
CVE-2018-11040
Spring Framework, versions 5.0.x before 5.0.7 and 4.3.x before 4.3.18 and older unsupported versions, allows web applications to enable cross-domain requests via JSONP (JSON with Padding) through AbstractJsonpResponseBodyAdvice for REST controllers and MappingJackson2JsonView for...
Vmware Spring Framework
Oracle Flexcube Private Banking 2.2.0.1
Oracle Retail Xstore Point Of Service 7.1
Oracle Application Testing Suite 12.5.0.3
Oracle Hospitality Guest Access 4.2.0
Oracle Hospitality Guest Access 4.2.1
Oracle Weblogic Server 12.2.1.3.0
Oracle Enterprise Manager Ops Center 12.3.3
Oracle Endeca Information Discovery Integrator 3.2.0
Oracle Endeca Information Discovery Integrator 3.1.0
Oracle Agile Product Lifecycle Management 9.3.3
Oracle Agile Product Lifecycle Management 9.3.4
Oracle Agile Product Lifecycle Management 9.3.5
Oracle Application Testing Suite 13.1.0.1
Oracle Application Testing Suite 13.2.0.1
Oracle Application Testing Suite 13.3.0.1
Oracle Communications Online Mediation Controller 6.1
Oracle Communications Services Gatekeeper
Oracle Healthcare Master Person Index 3.0
Oracle Healthcare Master Person Index 4.0
Oracle Insurance Rules Palette 10.0
Oracle Insurance Rules Palette 10.2
312
VMScore
CVE-2021-41165
CKEditor4 is an open source WYSIWYG HTML editor. In affected version a vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4. The vulnerability allowed to inject malformed comments HTML bypassing content sanitization, w...
Ckeditor Ckeditor
Drupal Drupal
Oracle Webcenter Portal 12.2.1.3.0
Oracle Agile Product Lifecycle Management 9.3.6
Oracle Banking Digital Experience 19.1
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Webcenter Portal 12.2.1.4.0
Oracle Banking Digital Experience 19.2
Oracle Banking Digital Experience 20.1
Oracle Commerce Guided Search 11.3.2
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Banking Digital Experience 21.1
Oracle Banking Apis
Oracle Banking Apis 19.1
Oracle Banking Apis 19.2
Oracle Banking Apis 20.1
Oracle Banking Apis 21.1
Oracle Banking Digital Experience
Oracle Application Express
605
VMScore
CVE-2020-14061
FasterXML jackson-databind 2.x prior to 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oracle.jms.AQjmsQueueConnectionFactory, oracle.jms.AQjmsXATopicConnectionFactory, oracle.jms.AQjmsTopicConnectionFactory, oracle.jms.AQjmsXAQueueConnec...
Fasterxml Jackson-databind
Netapp Steelstore Cloud Integrated Storage -
Netapp Active Iq Unified Manager
Debian Debian Linux 8.0
Oracle Agile Plm 9.3.6
Oracle Banking Digital Experience 18.2
Oracle Banking Digital Experience 18.3
Oracle Banking Digital Experience 19.1
Oracle Banking Digital Experience 18.1
Oracle Communications Instant Messaging Server 10.0.1.4.0
Oracle Communications Diameter Signaling Router
Oracle Banking Digital Experience 19.2
Oracle Banking Digital Experience 20.1
Oracle Communications Evolved Communications Application Server 7.1
Oracle Communications Contacts Server 8.0.0.5.0
Oracle Communications Calendar Server 8.0.0.4.0
Oracle Communications Session Route Manager
Oracle Communications Session Report Manager
Oracle Communications Element Manager
Oracle Autovue For Agile Product Lifecycle Management 21.0.2
605
VMScore
CVE-2020-24616
FasterXML jackson-databind 2.x prior to 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource (aka Anteros-DBCP).
Fasterxml Jackson-databind
Netapp Active Iq Unified Manager -
Oracle Application Testing Suite 13.3.0.1
Oracle Agile Plm 9.3.6
Oracle Communications Policy Management 12.5.0
Oracle Communications Diameter Signaling Router
Oracle Communications Services Gatekeeper 7.0
Oracle Communications Evolved Communications Application Server 7.1
Oracle Communications Contacts Server 8.0.0.5.0
Oracle Communications Calendar Server 8.0.0.4.0
Oracle Communications Unified Inventory Management 7.4.1
Oracle Communications Cloud Native Core Unified Data Repository 1.4.0
Oracle Communications Element Manager
Oracle Autovue For Agile Product Lifecycle Management 21.0.2
Oracle Communications Messaging Server 8.1
Oracle Siebel Ui Framework
Oracle Banking Supply Chain Finance 14.2
Oracle Banking Supply Chain Finance 14.3
Oracle Banking Supply Chain Finance 14.5
Oracle Identity Manager Connector 11.1.1.5.0
Oracle Communications Contacts Server 8.0
Oracle Communications Calendar Server 8.0
1 Github repository
605
VMScore
CVE-2020-24750
FasterXML jackson-databind 2.x prior to 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration.
Fasterxml Jackson-databind
Oracle Application Testing Suite 13.3.0.1
Oracle Agile Plm 9.3.6
Oracle Communications Policy Management 12.5.0
Oracle Communications Diameter Signaling Router
Oracle Communications Offline Mediation Controller 12.0.0.3.0
Oracle Communications Services Gatekeeper 7.0
Oracle Communications Contacts Server 8.0.0.5.0
Oracle Communications Calendar Server 8.0.0.4.0
Oracle Banking Credit Facilities Process Management 14.3.0
Oracle Banking Corporate Lending Process Management 14.3.0
Oracle Siebel Core - Server Framework
Oracle Communications Unified Inventory Management 7.4.1
Oracle Communications Element Manager
Oracle Autovue For Agile Product Lifecycle Management 21.0.2
Oracle Banking Supply Chain Finance 14.2.0
Oracle Banking Credit Facilities Process Management 14.2.0
Oracle Banking Credit Facilities Process Management 14.5.0
Oracle Banking Corporate Lending Process Management 14.2.0
Oracle Banking Corporate Lending Process Management 14.5.0
Oracle Banking Supply Chain Finance 14.5.0
Oracle Banking Supply Chain Finance 14.3.0
1 Github repository
633
VMScore
CVE-2022-23437
There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads. This causes, the XercesJ XML parser to wait in an infinite loop, which may sometimes consume system resources for prolonged duration. This vulner...
Apache Xerces-j
Oracle Ilearning 6.2
Oracle Flexcube Universal Banking 12.4.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Agile Plm 9.3.6
Oracle Weblogic Server 12.2.1.4.0
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Weblogic Server 14.1.1.0.0
Oracle Retail Bulk Data Integration 16.0.3.0
Oracle Retail Merchandising System 16.0.3
Oracle Global Lifecycle Management Nextgen Oui Framework 13.9.4.2.2
Oracle Agile Engineering Data Management 6.2.1.0
Oracle Retail Service Backbone 16.0.3
Oracle Retail Financial Integration 16.0.3
Oracle Retail Integration Bus 16.0.3
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Retail Service Backbone 15.0.3.1
Oracle Retail Service Backbone 14.1.3.2
Oracle Financial Services Enterprise Case Management 8.0.7.2.0
Oracle Banking Party Management 2.7.0
Oracle Retail Merchandising System 19.0.1
Oracle Retail Integration Bus 14.1.3.2
605
VMScore
CVE-2020-35491
FasterXML jackson-databind 2.x prior to 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource.
Fasterxml Jackson-databind
Netapp Service Level Manager -
Debian Debian Linux 9.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Application Testing Suite 13.3.0.1
Oracle Banking Platform 2.6.2
Oracle Agile Plm 9.3.6
Oracle Webcenter Portal 12.2.1.4.0
Oracle Sd-wan Edge 9.0
Oracle Communications Services Gatekeeper 7.0
Oracle Retail Merchandising System 15.0.3
Oracle Banking Platform 2.7.0
Oracle Banking Platform 2.7.1
Oracle Banking Platform 2.9.0
Oracle Communications Evolved Communications Application Server 7.1
Oracle Banking Platform 2.8.0
Oracle Banking Virtual Account Management 14.3.0
Oracle Insurance Policy Administration J2ee 11.0.2
Oracle Communications Unified Inventory Management 7.4.1
Oracle Retail Xstore Point Of Service 16.0.6
Oracle Retail Xstore Point Of Service 17.0.4
Oracle Retail Xstore Point Of Service 18.0.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »