Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle jd edwards enterpriseone orchestrator vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-22050
Vulnerability in the JD Edwards EnterpriseOne Orchestrator product of Oracle JD Edwards (component: E1 IOT Orchestrator Security). Supported versions that are affected are before 9.2.7.4. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP...
Oracle Jd Edwards Enterpriseone Orchestrator
4.3
CVSSv3
CVE-2022-21532
Vulnerability in the JD Edwards EnterpriseOne Orchestrator product of Oracle JD Edwards (component: E1 IOT Orchestrator). Supported versions that are affected are 9.2.6.3 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to co...
Oracle Jd Edwards Enterpriseone Orchestrator
5
CVSSv2
CVE-2021-2052
Vulnerability in the JD Edwards EnterpriseOne Orchestrator product of Oracle JD Edwards (component: E1 IOT Orchestrator Security). The supported version that is affected is before 9.2.5.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HT...
Oracle Jd Edwards Enterpriseone Orchestrator
6.5
CVSSv3
CVE-2025-21552
Vulnerability in the JD Edwards EnterpriseOne Orchestrator product of Oracle JD Edwards (component: E1 IOT Orchestrator Security). Supported versions that are affected are before 9.2.9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP...
Oracle Jd Edwards Enterpriseone Orchestrator Prior To 9.2.9.2
Oracle Corporation Jd Edwards Enterpriseone Orchestrator
6.5
CVSSv3
CVE-2024-21168
Vulnerability in the JD Edwards EnterpriseOne Orchestrator product of Oracle JD Edwards (component: E1 IOT Orchestrator Security). Supported versions that are affected are before 9.2.8.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP...
Oracle Jd Edwards Enterpriseone Orchestrator
6.8
CVSSv2
CVE-2019-17195
Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, which could result in an application crash (potential information disclosure) or a potential authentication bypass.
Connect2id Nimbus Jose+jwt
Apache Hadoop 3.2.1
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Communications Pricing Design Center 12.0.0.3.0
Oracle Data Integrator 12.2.1.4.0
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Healthcare Data Repository 8.1.0
Oracle Insurance Policy Administration
Oracle Jd Edwards Enterpriseone Orchestrator
Oracle Jd Edwards Enterpriseone Tools
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
5
CVSSv2
CVE-2020-13956
Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
Apache Httpclient
Quarkus Quarkus
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
Oracle Jd Edwards Enterpriseone Orchestrator
Oracle Jd Edwards Enterpriseone Tools
Oracle Nosql Database
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Pt Peopletools 8.57
Oracle Peoplesoft Enterprise Pt Peopletools 8.58
Oracle Peoplesoft Enterprise Pt Peopletools 8.59
4 Github repositories
5
CVSSv2
CVE-2021-23840
Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be...
Openssl Openssl
Debian Debian Linux 10.0
Tenable Log Correlation Engine
Tenable Nessus Network Monitor 5.11.0
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Oracle Business Intelligence 5.5.0.0.0
Oracle Business Intelligence 5.9.0.0.0
Oracle Business Intelligence 12.2.1.3.0
Oracle Business Intelligence 12.2.1.4.0
6.8
CVSSv2
CVE-2020-11620
FasterXML jackson-databind 2.x prior to 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.jelly.impl.Embedded (aka commons-jelly).
Fasterxml Jackson-databind
Debian Debian Linux 8.0
Netapp Active Iq Unified Manager
Netapp Steelstore Cloud Integrated Storage -
Oracle Banking Platform
Oracle Communications Contacts Server 8.0.0.4.0
Oracle Communications Evolved Communications Application Server 7.1
Oracle Communications Instant Messaging Server 10.0.1.4.0
Oracle Communications Network Charging And Control
Oracle Communications Network Charging And Control 6.0.1
Oracle Enterprise Manager Base Platform 13.3.0.0
Oracle Enterprise Manager Base Platform 13.4.0.0
1 Github repository
6.8
CVSSv2
CVE-2020-9547
FasterXML jackson-databind 2.x prior to 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig (aka ibatis-sqlmap).
Fasterxml Jackson-databind
Netapp Active Iq Unified Manager
Debian Debian Linux 8.0
Oracle Autovue For Agile Product Lifecycle Management 21.0.2
Oracle Banking Platform
Oracle Communications Contacts Server 8.0.0.4.0
Oracle Communications Evolved Communications Application Server 7.1
Oracle Communications Instant Messaging Server 10.0.1.4.0
Oracle Communications Network Charging And Control
Oracle Communications Network Charging And Control 6.0.1
Oracle Enterprise Manager Base Platform 13.3.0.0
Oracle Enterprise Manager Base Platform 13.4.0.0
2 Github repositories
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
intel(r) me driver pack installer engines
avada | website builder for wordpress & woocommerce
CVE-2024-31858
intel(r) mlc software
rank math seo – ai seo tools to dominate seo rankings
template injection
CVE-2024-36280
CVE-2025-24016
information disclosure
CVE-2024-36274
CVE-2024-57605
injection
CVE-2025-24472
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »