oracle communications cloud native core security edge protection proxy 1.6.0 vulnerabilities and exploits

(subscribe to this query)

When responding to new h2c connection requests, Apache Tomcat versions 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41 and 8.5.0 to 8.5.61 could duplicate request headers and a limited amount of request body from one request to another meaning user A and user B could both see the results...

Apache Tomcat Apache Tomcat 9.0.0 Apache Tomcat 10.0.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0 Oracle Agile Plm 9.3.3 Oracle Agile Plm 9.3.6 Oracle Communications Cloud Native Core Policy 1.14.0 Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.6.0 Oracle Communications Instant Messaging Server 10.0.1.5.0 Oracle Database 12.2.0.1 Oracle Database 19c

The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note tha...

Apache Tomcat Apache Tomcat 9.0.0 Apache Tomcat 10.0.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0 Oracle Agile Plm 9.3.3 Oracle Agile Plm 9.3.6 Oracle Communications Cloud Native Core Policy 1.14.0 Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.6.0 Oracle Communications Instant Messaging Server 10.0.1.5.0 Oracle Database 12.2.0.1 Oracle Database 19c

In Spring Framework, versions 5.2.x before 5.2.15 and versions 5.3.x before 5.3.7, a WebFlux application is vulnerable to a privilege escalation: by (re)creating the temporary storage directory, a locally authenticated malicious user can read or modify files that have been upload...

Vmware Spring Framework Oracle Commerce Guided Search 11.3.2 Oracle Communications Brm - Elastic Charging Engine 12.0.0.3 Oracle Communications Cloud Native Core Binding Support Function 1.9.0 Oracle Communications Cloud Native Core Policy 1.14.0 Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.6.0 Oracle Communications Cloud Native Core Service Communication Proxy 1.14.0 Oracle Communications Cloud Native Core Unified Data Repository 1.14.0 Oracle Communications Diameter Intelligence Hub Oracle Communications Element Manager Oracle Communications Interactive Session Recorder 6.4 Oracle Communications Network Integrity 7.3.6

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

Redhat Hibernate Validator Redhat Hibernate Validator 6.1.0 Redhat Fuse 1.0 Redhat Jboss Data Grid -Redhat Jboss Enterprise Application Platform -Redhat Openshift Application Runtimes -Redhat Single Sign-on -Redhat Jboss Enterprise Application Platform 7.2 Redhat Jboss Enterprise Application Platform 7.3 Netapp Active Iq Unified Manager -Netapp Management Services For Element Software And Netapp Hci -Netapp Snapcenter Plug-in -

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook