Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
Docs
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle retail point-of-service 14.0 vulnerabilities and exploits
(subscribe to this query)
7.3
CVSSv3
CVE-2019-2558
Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Infrastructure). Supported versions that are affected are 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP ...
Oracle Corporation Retail Point-of-service
Oracle Retail Point-of-service 13.4
Oracle Retail Point-of-service 14.0
Oracle Retail Point-of-service 14.1
8.5
CVSSv3
CVE-2017-10065
Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Security). Supported versions that are affected are 13.2, 13.3, 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows low privileged attacker with network access via ...
Oracle Retail Point-of-service 6.0.0
Oracle Retail Point-of-service 6.0.10
Oracle Retail Point-of-service 6.0.11
Oracle Retail Point-of-service 6.5.0
Oracle Retail Point-of-service 6.5.4
Oracle Retail Point-of-service 6.5.10
Oracle Retail Point-of-service 6.5.11
Oracle Retail Point-of-service 7.0.0
Oracle Retail Point-of-service 7.0.1
Oracle Retail Point-of-service 7.0.2
Oracle Retail Point-of-service 7.0.3
Oracle Retail Point-of-service 7.0.4
5.5
CVSSv3
CVE-2021-36373
When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant before 1.9.16 and 1.10.11 were aff...
Apache Software Foundation Apache Ant
Apache Ant
Oracle Agile Plm 9.3.6
Oracle Banking Trade Finance 14.5
Oracle Banking Treasury Management 14.5
Oracle Communications Cloud Native Core Automated Test Suite 1.9.0
Oracle Communications Cloud Native Core Binding Support Function 1.11.0
Oracle Communications Order And Service Management 7.3
Oracle Communications Order And Service Management 7.4
Oracle Communications Unified Inventory Management 7.3.0
Oracle Communications Unified Inventory Management 7.4.0
Oracle Communications Unified Inventory Management 7.4.1
5.5
CVSSv3
CVE-2021-36374
When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Commonly used derived formats ...
Apache Software Foundation Apache Ant
Apache Ant
Oracle Agile Engineering Data Management 6.2.1.0
Oracle Agile Plm 9.3.6
Oracle Banking Trade Finance 14.5
Oracle Banking Treasury Management 14.5
Oracle Communications Cloud Native Core Automated Test Suite 1.9.0
Oracle Communications Cloud Native Core Binding Support Function 1.11.0
Oracle Communications Diameter Intelligence Hub
Oracle Communications Order And Service Management 7.3
Oracle Communications Order And Service Management 7.4
Oracle Communications Unified Inventory Management 7.3.0
6.3
CVSSv3
CVE-2020-1945
Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The fixcrlf and replaceregexp tasks also copy files from the temporary directory bac...
* Apache Ant
Apache Ant
Canonical Ubuntu Linux 19.10
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Opensuse Leap 15.2
Oracle Agile Engineering Data Management 6.2.1.0
Oracle Banking Enterprise Collections
Oracle Banking Liquidity Management
Oracle Banking Platform
Oracle Business Process Management Suite 12.2.1.3.0
Oracle Business Process Management Suite 12.2.1.4.0
9.8
CVSSv3
CVE-2018-8013
In Apache Batik 1.x prior to 1.10, when deserializing subclass of `AbstractDocument`, the class takes a string from the inputStream as the class name which then use it to call the no-arg constructor of the class. Fix was to check the class type before calling newInstance in deser...
Apache Software Foundation Apache Batik
Apache Batik
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 14.04
Oracle Business Intelligence 11.1.1.7.0
Oracle Business Intelligence 11.1.1.9.0
Oracle Business Intelligence 12.2.1.3.0
Oracle Business Intelligence 12.2.1.4.0
Oracle Communications Diameter Signaling Router
Oracle Communications Metasolv Solution 6.3.0
1 Article
6.5
CVSSv3
CVE-2020-5421
In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jsessionid path parameter.
Spring By Vmware Spring Framework
Vmware Spring Framework
Oracle Commerce Guided Search 11.3.2
Oracle Communications Brm 11.3.0.9
Oracle Communications Brm 12.0.0.3
Oracle Communications Design Studio 7.3.4
Oracle Communications Design Studio 7.3.5
Oracle Communications Design Studio 7.4.0
Oracle Communications Session Report Manager
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Endeca Information Discovery Integrator 3.2.0
2 Github repositories
8.8
CVSSv3
CVE-2018-1258
Spring Framework version 5.0.5 when used in combination with any versions of Spring Security contains an authorization bypass when using method security. An unauthorized malicious user can gain unauthorized access to methods that should be restricted.
Pivotal Spring Framework
Pivotal Software Spring Security
Vmware Spring Framework 5.0.5
Oracle Agile Plm 9.3.3
Oracle Agile Plm 9.3.4
Oracle Agile Plm 9.3.5
Oracle Agile Plm 9.3.6
Oracle Application Testing Suite 10.1
Oracle Application Testing Suite 12.5.0.3
Oracle Application Testing Suite 13.1.0.1
Oracle Application Testing Suite 13.2.0.1
Oracle Application Testing Suite 13.3.0.1
3.3
CVSSv2
CVE-2016-0435
Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applications 13.4, 14.0, and 14.1 allows local users to affect confidentiality and integrity via vectors related to Mobile POS.
Oracle Retail Applications 13.4
Oracle Retail Applications 14.0
Oracle Retail Applications 14.1
1.9
CVSSv2
CVE-2016-0434
Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applications 13.4, 14.0, and 14.1 allows local users to affect confidentiality via vectors related to Mobile POS, a different vulnerability than CVE-2016-0436, CVE-2016-0437, and CVE-2016-0...
Oracle Retail Applications 13.4
Oracle Retail Applications 14.0
Oracle Retail Applications 14.1
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
ruoyi-ai
CVE-2025-6417
CVE-2025-6362
aquatronica
infosphere information server
arbitrary code
validation
IMAP
winrar
CVE-2025-6018
CVE-2025-6402
CVE-2025-6447
CVE-2025-4275
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »
Vulmon