Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle application server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1383
The OHS component 1.0.2 up to and including 10.x, when UseWebcacheIP is disabled, in Oracle Application Server allows remote malicious users to bypass HTTP Server mod_access restrictions via a request to the webcache TCP port 7778.
Oracle Application Server 10.1.0.2
Oracle Application Server 10.1.0.3
Oracle Application Server 10.1.0.3.1
Oracle Application Server 10.1.2
1 EDB exploit
NA
CVE-2005-3450
Unspecified vulnerability in the HTTP Server in Oracle Application Server 1.0 up to 9.0.2.3 has unknown impact and attack vectors, as identified by Oracle Vuln# AS04.
Oracle Application Server 1.0
Oracle Application Server 1.0.2.2
Oracle Application Server 9.0.2.3
Oracle Application Server 9.0.3.1
NA
CVE-2009-1017
Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, 10.1.3.3.3, and 10.1.3.4 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2009-0994.
Oracle Application Server 5.6.2
Oracle Application Server 10.1.3.2.1
Oracle Application Server 10.1.3.3.3
Oracle Application Server 10.1.3.4
NA
CVE-2008-2612
Unspecified vulnerability in the Hyperion BI Plus component in Oracle Application Server 8.3.2.4, 8.5.0.3, 9.2.0.3, 9.2.1.0, and 9.3.1.0 has unknown impact and remote attack vectors.
Oracle Hyperion Bi Plus Component
Oracle Oracle Application Server 8.3.2.4
Oracle Oracle Application Server 8.5.0.3
Oracle Oracle Application Server 9.3.1.0
Oracle Oracle Application Server 9.2.0.3
Oracle Oracle Application Server 9.2.1.0
NA
CVE-2007-5521
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.3.3, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS06.
Oracle Application Server 10.1.2.2
Oracle Application Server 10.1.3.3
Oracle Application Server 9.0.4.3
Oracle Collaboration Suite 10.1.2
Oracle Application Server 10.1.2.0.2
NA
CVE-2007-5523
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.4.0, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS08.
Oracle Application Server 10.1.2.2
Oracle Application Server 10.1.4.0
Oracle Application Server 9.0.4.3
Oracle Collaboration Suite 10.1.2
Oracle Application Server 10.1.2.0.2
NA
CVE-2007-5525
Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.4.0.1; Collaboration Suite 10.1.2; and Enterprise Manager 10.1.2 has unknown impact and remote attack vectors, aka AS10.
Oracle Application Server 10.1.2.0.2
Oracle Application Server 9.0.4.3
Oracle Collaboration Suite 10.1.2
Oracle Application Server 10.1.2.2
Oracle Application Server 10.1.4.0.1
NA
CVE-2008-2614
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.3.3 has unknown impact and remote attack vectors.
Oracle Application Server 10.1.3.3
Oracle Application Server 9.0.4.3
Oracle Oracle Application Server 10.1.2.3
Oracle Oracle Http Server Component
NA
CVE-2008-1824
Unspecified vulnerability in the Oracle Dynamic Monitoring Service component in Oracle Application Server 9.0.4.3, 10.1.2.2, and 10.1.3.3 has unknown impact and remote attack vectors, aka AS02.
Oracle Application Server 9.0.4.3
Oracle Application Server 10.1.2.2
Oracle Application Server 10.1.3.3
NA
CVE-2007-2120
The Oracle Discoverer servlet in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2.0 allows remote malicious users to shut down an Oracle TNS Listener via a TNS STOP command in a request that uses the database/TNS alias, aka AS01.
Oracle Application Server 10.1.2.0.2
Oracle Application Server 10.1.2.2
Oracle Application Server 9.0.4.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »