Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

oracle communications session route manager 8.2.1 vulnerabilities and exploits

(subscribe to this query)
6.1
CVSSv3
CVE-2019-11358
jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery JqueryDebian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0Drupal DrupalBackdropcms BackdropFedoraproject Fedora 28Fedoraproject Fedora 29Fedoraproject Fedora 30Opensuse Leap 15.1Opensuse Backports Sle 15.0Netapp Snapcenter -Netapp Oncommand System ManagerRedhat Cloudforms 4.7Redhat Virtualization Manager 4.3Oracle Service Bus 12.1.3.0.0Oracle Primavera Unifier 16.2Oracle Jd Edwards Enterpriseone Tools 9.2Oracle Weblogic Server 12.1.3.0.0Oracle Service Bus 11.1.1.9.0Oracle Jdeveloper 11.1.1.9.0Oracle Primavera Unifier 16.1
6.1
CVSSv3
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate ValidatorRedhat Hibernate Validator 6.1.0Redhat Single Sign-on -Redhat Jboss Enterprise Application Platform -Redhat Jboss Data Grid -Redhat Openshift Application Runtimes -Redhat Fuse 1.0Redhat Jboss Enterprise Application Platform 7.2Redhat Jboss Enterprise Application Platform 7.3Netapp Active Iq Unified Manager -Netapp Element -Netapp Snapcenter Plug-in -Netapp Management Services For Element Software And Netapp Hci -Oracle Flexcube Investor Servicing 12.3.0Oracle Flexcube Investor Servicing 12.1.0Oracle Solaris 11Oracle Flexcube Private Banking 12.1.0Oracle Insurance Policy Administration J2ee 10.2.0Oracle Flexcube Private Banking 12.0.0Oracle Flexcube Investor Servicing 12.0.4Oracle Weblogic Server 12.1.3.0.0Oracle Retail Integration Bus 13.0
8.3
CVSSv3
CVE-2021-2351
Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Advanced N...
Oracle Flexcube Investor Servicing 12.3.0Oracle Flexcube Investor Servicing 12.1.0Oracle Flexcube Private Banking 12.1.0Oracle Flexcube Private Banking 12.0.0Oracle Flexcube Investor Servicing 12.0.4Oracle Retail Store Inventory Management 14.1Oracle Ilearning 6.2Oracle Hospitality Suite8 8.10.2Oracle Retail Back Office 14.1Oracle Weblogic Server 12.2.1.3.0Oracle Utilities Framework 4.2.0.3.0Oracle Flexcube Investor Servicing 12.4.0Oracle Peoplesoft Enterprise Peopletools 8.57Oracle Hospitality Reporting And Analytics 9.1.0Oracle Application Testing Suite 13.3.0.1Oracle Retail Order Broker 16.0Oracle Retail Returns Management 14.1Oracle Retail Central Office 14.1Oracle Banking Platform 2.6.2Oracle Primavera Unifier 18.8Oracle Retail Point-of-service 14.1Oracle Retail Predictive Application Server 15.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-47626CVE-2024-3400physicalCVE-2024-31426CVE-2024-22423CVE-2024-22438injectlocal usersCVE-2024-3797
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook