Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle financial services behavior detection platform vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2025-21550
Vulnerability in the Oracle Financial Services Behavior Detection Platform product of Oracle Financial Services Applications (component: Web UI). Supported versions that are affected are 8.0.8.1, 8.1.2.7 and 8.1.2.8. Easily exploitable vulnerability allows unauthenticated attacke...
Oracle Financial Services Behavior Detection Platform 8.0.8.1
Oracle Financial Services Behavior Detection Platform 8.1.2.7
Oracle Financial Services Behavior Detection Platform 8.1.2.8
Oracle Corporation Oracle Financial Services Behavior Detection Platform
4.3
CVSSv3
CVE-2023-21902
Vulnerability in the Oracle Financial Services Behavior Detection Platform product of Oracle Financial Services Applications (component: Application). The supported version that is affected is 8.0.8.1. Easily exploitable vulnerability allows low privileged attacker with network a...
Oracle Financial Services Behavior Detection Platform 8.0.8.1
5.9
CVSSv3
CVE-2021-38153
Some components in Apache Kafka use `Arrays.equals` to validate a password or key, which is vulnerable to timing attacks that make brute force attacks for such credentials more likely to be successful. Users should upgrade to 2.8.1 or higher, or 3.0.0 or higher where this vulnera...
Apache Kafka
Apache Kafka 2.8.0
Quarkus Quarkus
Oracle Communications Brm - Elastic Charging Engine
Oracle Communications Brm - Elastic Charging Engine 12.0.0.5.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Financial Services Analytical Applications Infrastructure
Oracle Financial Services Behavior Detection Platform
Oracle Financial Services Behavior Detection Platform 8.1.1.0
Oracle Financial Services Behavior Detection Platform 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.2.0
Oracle Financial Services Enterprise Case Management 8.0.7.1
5.4
CVSSv3
CVE-2022-24728
CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4 prior to version 4.18.0. The vulnerability allows someone to inject malformed HTML bypassing ...
Ckeditor Ckeditor
Drupal Drupal
Oracle Application Express
Oracle Commerce Merchandising 11.3.2
Oracle Financial Services Analytical Applications Infrastructure
Oracle Financial Services Analytical Applications Infrastructure 8.1.1.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.2.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.2.1
Oracle Financial Services Behavior Detection Platform
Oracle Financial Services Behavior Detection Platform 8.0.7.0
Oracle Financial Services Behavior Detection Platform 8.0.8.0
Oracle Financial Services Trade-based Anti Money Laundering 8.0.7
7.5
CVSSv3
CVE-2022-24729
CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. CKEditor4 prior to version 4.18.0 contains a vulnerability in the `dialog` plugin. The vulnerability allows abuse of a dialog input validator regular expression, which can cause a significant performance drop r...
Ckeditor Ckeditor
Drupal Drupal
Oracle Application Express
Oracle Commerce Merchandising 11.3.2
Oracle Financial Services Analytical Applications Infrastructure
Oracle Financial Services Analytical Applications Infrastructure 8.1.1.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.2.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.2.1
Oracle Financial Services Behavior Detection Platform
Oracle Financial Services Behavior Detection Platform 8.0.7.0
Oracle Financial Services Behavior Detection Platform 8.0.8.0
Oracle Financial Services Trade-based Anti Money Laundering 8.0.7
6.5
CVSSv3
CVE-2022-23437
There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads. This causes, the XercesJ XML parser to wait in an infinite loop, which may sometimes consume system resources for prolonged duration. This vulner...
Apache Xerces-j
Oracle Agile Engineering Data Management 6.2.1.0
Oracle Agile Plm 9.3.6
Oracle Banking Deposits And Lines Of Credit Servicing 2.7
Oracle Banking Party Management 2.7.0
Oracle Communications Asap 7.3
Oracle Communications Element Manager
Oracle Communications Session Report Manager
Oracle Communications Session Route Manager
Oracle Financial Services Analytical Applications Infrastructure
Oracle Financial Services Behavior Detection Platform
Oracle Financial Services Behavior Detection Platform 8.1.1.0
7.5
CVSSv3
CVE-2020-36518
jackson-databind prior to 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.
Fasterxml Jackson-databind
Oracle Big Data Spatial And Graph
Oracle Coherence 14.1.1.0.0
Oracle Commerce Platform 11.3.0
Oracle Commerce Platform 11.3.1
Oracle Commerce Platform 11.3.2
Oracle Communications Billing And Revenue Management
Oracle Communications Cloud Native Core Binding Support Function 22.1.3
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Network Repository Function 22.1.2
Oracle Communications Cloud Native Core Network Repository Function 22.2.0
Oracle Communications Cloud Native Core Network Slice Selection Function 22.1.0
4 Github repositories
9.8
CVSSv3
CVE-2022-22963
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.
Vmware Spring Cloud Function
Oracle Banking Branch 14.5
Oracle Banking Cash Management 14.5
Oracle Banking Corporate Lending Process Management 14.5
Oracle Banking Credit Facilities Process Management 14.5
Oracle Banking Electronic Data Exchange For Corporates 14.5
Oracle Banking Liquidity Management 14.2
Oracle Banking Liquidity Management 14.5
Oracle Banking Origination 14.5
Oracle Banking Supply Chain Finance 14.5
Oracle Banking Trade Finance Process Management 14.5
Oracle Banking Virtual Account Management 14.5
43 Github repositories
3 Articles
9.8
CVSSv3
CVE-2022-22965
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e....
Vmware Spring Framework
Cisco Cx Cloud Agent
Oracle Communications Cloud Native Core Automated Test Suite 1.9.0
Oracle Communications Cloud Native Core Automated Test Suite 22.1.0
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Console 22.1.0
Oracle Communications Cloud Native Core Network Exposure Function 22.1.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.1.0
Oracle Communications Cloud Native Core Network Repository Function 1.15.0
Oracle Communications Cloud Native Core Network Repository Function 22.1.0
Oracle Communications Cloud Native Core Network Slice Selection Function 1.8.0
133 Github repositories
7 Articles
8.3
CVSSv3
CVE-2021-2351
Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Advanced N...
Oracle Advanced Networking Option 12.1.0.2
Oracle Advanced Networking Option 12.2.0.1
Oracle Advanced Networking Option 19c
Oracle Agile Engineering Data Management 6.2.1.0
Oracle Agile Plm 9.3.6
Oracle Agile Product Lifecycle Management For Process 6.2.2.0
Oracle Agile Product Lifecycle Management For Process 6.2.3.0
Oracle Airlines Data Model 12.1.1.0.0
Oracle Airlines Data Model 12.2.0.1.0
Oracle Application Performance Management 13.4.1.0
Oracle Application Performance Management 13.5.1.0
Oracle Application Testing Suite 13.3.0.1
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2024-52884
CVE-2025-25085
CVE-2025-20124
login-box
CVE-2025-1114
bnielsen
log injection
CVE-2025-0411
metagauss
CVE-2024-57357
malicious code
file upload
impronta
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »