CVSS: 5.3EPSS: 88%CPEs: 8EXPL: 2CVE-2013-3827 – Oracle GlassFish Server 2.1.1/3.0.1 - Multiple Subcomponent Resource Identifier Traversal Arbitrary File Access
https://notcve.org/view.php?id=CVE-2013-3827
16 Oct 2013 — Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.3.0, 11.1.2.4.0, and 12.1.2.0.0; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.1 allows remote attackers to affect confidentiality via unknown vectors related to Java Server Faces or Web Container. Vulnerabilidad no especificada en el componente de Oracle GlassFish Server en Oracle F... • https://www.exploit-db.com/exploits/38802 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 25%CPEs: 2EXPL: 3CVE-2013-5791 – Oracle Outside In MDB - File Parsing Stack Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2013-5791
16 Oct 2013 — Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters. NOTE: the previous information is from the October 2013 CPU. Oracle has not commented on claims from a third party that the issue is a stack-based buffer overflow in the Microsoft Access 1.x parser in vsacs.dll before 8.4.0.108 and before 8.4.1.52, which allows attackers to execute arbi... • https://packetstorm.news/files/id/124963 •
CVSS: 6.8EPSS: 1%CPEs: 3EXPL: 0CVE-2013-3776
https://notcve.org/view.php?id=CVE-2013-3776
17 Jul 2013 — Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7, 8.4.0, and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-3781. Vulnerabilidad sin especificar en el componente Oracle Outside In Technology en Oracle Fusion Middleware 8.3.7, 8.4.0, y 8.4.1, permite a atacantes dependientes del contexto comprometer la disponibilidad a través de vectores desconoc... • http://jvn.jp/en/jp/JVN68663052/index.html •
CVSS: 8.2EPSS: 0%CPEs: 3EXPL: 0CVE-2013-3781
https://notcve.org/view.php?id=CVE-2013-3781
17 Jul 2013 — Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7, 8.4.0, and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-3776. Vulnerabilidad sin especificar en el componente Oracle Outside In Technology en Oracle Fusion Middleware 8.3.7, 8.4.0, y 8.4.1 permite a atacantes dependientes del contexto comprometer la disponibilidad a través de vectores desconoci... • http://jvn.jp/en/jp/JVN07497769/index.html •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1529
https://notcve.org/view.php?id=CVE-2013-1529
17 Apr 2013 — Unspecified vulnerability in the Oracle WebCenter Interaction component in Oracle Fusion Middleware 6.5.1 and 10.3.3.0 allows remote attackers to affect integrity via unknown vectors related to Image Service. Vulnerabilidad no especificada en el componente Oracle WebCenter Interaction en Oracle Fusion Middleware v6.5.1 y v10.3.3.0 permite a atacantes remotos afectar a la integridad a través de vectores desconocidos relacionados con el servicio de Image Service. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •
CVSS: 4.0EPSS: 16%CPEs: 3EXPL: 1CVE-2013-1509 – Oracle WebCenter Sites Satellite Server - HTTP Header Injection
https://notcve.org/view.php?id=CVE-2013-1509
17 Apr 2013 — Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 allows remote authenticated users to affect integrity via unknown vectors related to WebCenter Sites. Vulnerabilidad no especificada en el componente Oracle WebCenter Sites en Oracle Fusion Middleware v7.6.2, v11.1.1.6.0, y v11.1.1.6.1 permite a usuarios remotos autenticados afectar la integridad mediante vectores desconocidos relacionados con WebCenter Sites. • https://www.exploit-db.com/exploits/24964 •
CVSS: 5.3EPSS: 0%CPEs: 46EXPL: 0CVE-2012-1677
https://notcve.org/view.php?id=CVE-2012-1677
17 Jan 2013 — Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware allows remote attackers to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente Oracle Application Server Single Sign-On en Oracle Fusion Middleware permite a atacantes remotos afectar a la integridad a través de vectores desconocidos. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •
CVSS: 2.1EPSS: 0%CPEs: 11EXPL: 0CVE-2012-5065
https://notcve.org/view.php?id=CVE-2012-5065
17 Oct 2012 — Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows local users to affect integrity via unknown vectors related to ImagePicker. Vulnerabilidad no especificada en el componente de Oracle WebCenter Sites de Oracle Fusion Middleware v6.1 v6.2 v6.3.x, v7, v7.0.1, v7.0.2, v7.0.3, v7.5, v7.6.1, v7.6.2, y v11.1.1.6.0 permite a usuarios locales afectan la integridad a través de vectores descon... • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •
CVSS: 4.9EPSS: 2%CPEs: 11EXPL: 1CVE-2012-3185 – Oracle WebCenter Sites (FatWire Content Server) - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2012-3185
17 Oct 2012 — Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Advanced UI, a different vulnerability than CVE-2012-3183 and CVE-2012-3186. Vulnerabilidad no especificada en el componente Oracle WebCenter Sites en Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2 y 1... • https://www.exploit-db.com/exploits/22041 •
CVSS: 4.3EPSS: 17%CPEs: 12EXPL: 1CVE-2012-3184 – Oracle WebCenter Sites (FatWire Content Server) - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2012-3184
17 Oct 2012 — Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows remote attackers to affect integrity via unknown vectors related to Advanced UI. Vulnerabilidad no especificada en el componente Oracle WebCenter Sites de Oracle Fusion Middleware v6.1 v6.2 v6.3.x, v7, v7.0.1, v7.0.2, v7.0.3, v7.5, v7.6.1, v7.6.2, y v11.1.1.6.0, permite a usuarios remotos autenticados afectar la integridad a través de... • https://www.exploit-db.com/exploits/22041 •