Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle storagetek tape analytics sw tool 2.3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2015-4852
The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote malicious users to execute arbitrary commands via a crafted serialized Java object in T3 protocol traffic to TCP port 7001, related to oracle_common/modules/com.bea.core....
Oracle Virtual Desktop Infrastructure
Oracle Storagetek Tape Analytics Sw Tool 2.3
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.1.2.0.0
Oracle Weblogic Server 12.1.3.0.0
Oracle Weblogic Server 12.2.1.0.0
2 EDB exploits
9 Github repositories
7.5
CVSSv2
CVE-2019-2725
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to com...
Oracle Agile Plm 9.3.3
Oracle Agile Plm 9.3.4
Oracle Agile Plm 9.3.5
Oracle Communications Converged Application Server 5.1
Oracle Communications Converged Application Server 7.0
Oracle Communications Converged Application Server 7.1
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Storagetek Tape Analytics Sw Tool 2.3
Oracle Tape Library Acsls 8.5
Oracle Tape Virtual Storage Manager Gui 6.2
2 EDB exploits
19 Github repositories
4 Articles
7.5
CVSSv2
CVE-2019-2729
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...
Oracle Communications Diameter Signaling Router 8.0
Oracle Communications Diameter Signaling Router 8.1
Oracle Communications Diameter Signaling Router 8.2
Oracle Communications Diameter Signaling Router 8.2.1
Oracle Communications Network Integrity
Oracle Hyperion Infrastructure Technology 11.1.2.4
Oracle Hyperion Infrastructure Technology 11.2.5.0
Oracle Identity Manager 11.1.2.3.0
Oracle Identity Manager 12.2.1.3.0
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.58
8 Github repositories
2 Articles
4.3
CVSSv2
CVE-2019-3739
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to Information Exposure Through Timing Discrepancy vulnerabilities during ECDSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover ECDSA keys.
Dell Bsafe Cert-j
Dell Bsafe Crypto-j
Dell Bsafe Ssl-j
Oracle Application Performance Management 13.3.0.0
Oracle Application Performance Management 13.4.0.0
Oracle Communications Network Integrity 7.3.2
Oracle Communications Network Integrity 7.3.5
Oracle Communications Network Integrity 7.3.6
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 18c
Oracle Database 19c
4.3
CVSSv2
CVE-2019-3740
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys.
Dell Bsafe Cert-j
Dell Bsafe Crypto-j
Dell Bsafe Ssl-j
Oracle Application Performance Management 13.3.0.0
Oracle Application Performance Management 13.4.0.0
Oracle Communications Network Integrity 7.3.2
Oracle Communications Network Integrity 7.3.5
Oracle Communications Network Integrity 7.3.6
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
4.3
CVSSv2
CVE-2019-3738
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable shared key.
Dell Bsafe Cert-j
Dell Bsafe Crypto-j
Dell Bsafe Ssl-j
Mcafee Threat Intelligence Exchange Server
Mcafee Threat Intelligence Exchange Server 3.0.0
Oracle Application Performance Management 13.3.0.0
Oracle Application Performance Management 13.4.0.0
Oracle Communications Network Integrity 7.3.2
Oracle Communications Network Integrity 7.3.5
Oracle Communications Network Integrity 7.3.6
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
3.6
CVSSv2
CVE-2020-5421
In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jsessionid path parameter.
Vmware Spring Framework
Oracle Commerce Guided Search 11.3.2
Oracle Communications Brm 11.3.0.9
Oracle Communications Brm 12.0.0.3
Oracle Communications Design Studio 7.3.4
Oracle Communications Design Studio 7.3.5
Oracle Communications Design Studio 7.4.0
Oracle Communications Session Report Manager
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Endeca Information Discovery Integrator 3.2.0
Oracle Enterprise Data Quality 12.2.1.3.0
2 Github repositories
7.5
CVSSv2
CVE-2020-10683
dom4j prior to 2.0.3 and 2.1.x prior to 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, there is popular external documentation from OWASP showing how to enable the safe, non-default behavior in any application that uses dom4j...
Dom4j Project Dom4j
Oracle Agile Plm 9.3.3
Oracle Agile Plm 9.3.5
Oracle Application Testing Suite 13.3.0.1
Oracle Banking Platform
Oracle Business Process Management Suite 12.2.1.3.0
Oracle Business Process Management Suite 12.2.1.4.0
Oracle Communications Application Session Controller 3.9m0p1
Oracle Communications Diameter Signaling Router
Oracle Communications Unified Inventory Management 7.3.0
Oracle Communications Unified Inventory Management 7.4.0
Oracle Data Integrator 12.2.1.3.0
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-0575
CVE-2024-55591
CVE-2024-41742
com.transsion.carlcare
CVE-2024-57926
code injection
CVE-2024-12365
tenda
insecure direct object reference
CVE-2024-13433
tduck-platform
code-projects
XML injection
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started