CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2016-0548
https://notcve.org/view.php?id=CVE-2016-0548
Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Common Components, a different vulnerability than CVE-2016-0511, CVE-2016-0547, and CVE-2016-0549. Vulnerabilidad no especificada en el componente Oracle E-Business Intelligence en Oracle E-Business Suite 11.5.10.2 permite a atacantes remotos afectar a la confidencialidad y la integridad a través de vectores desconocidos relacionados con Common Components, una vulnerabilidad diferente a CVE-2016-0511, CVE-2016-0547 y CVE-2016-0549. • http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html http://www.securitytracker.com/id/1034726 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2016-0561
https://notcve.org/view.php?id=CVE-2016-0561
Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, and 12.1.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-0564. Vulnerabilidad no especificada en el componente Oracle E-Business Intelligence en Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2 y 12.1.3 permite a usuarios remotos autenticados afectar a la confidencialidad y la integridad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2016-0564. • http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html http://www.securitytracker.com/id/1034726 •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2016-0569
https://notcve.org/view.php?id=CVE-2016-0569
Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente Oracle E-Business Intelligence en Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2 y 12.1.3 permite a atacantes remotos afectar a la confidencialidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html http://www.securitytracker.com/id/1034726 •
CVSS: 7.5EPSS: 51%CPEs: 6EXPL: 0CVE-2014-3576 – ActiveMQ: DoS via unauthenticated remote shutdown command
https://notcve.org/view.php?id=CVE-2014-3576
The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command. Vulnerabilidad en la función processControlCommand en broker/TransportConnection.java en Apache ActiveMQ en versiones anteriores a 5.11.0, permite a atacantes remotos causar una denegación de servicio (apagado) a través de un comando de apagado. It was found that the Apache ActiveMQ broker exposed a remote shutdown command without requiring any authentication to use it. A remote, unauthenticated attacker could use this flaw to shut down ActiveMQ broker's listener. • http://activemq.2283324.n4.nabble.com/About-CVE-2014-3576-tp4699628.html http://packetstormsecurity.com/files/134274/Apache-ActiveMQ-5.10.1-Denial-Of-Service.html http://www.debian.org/security/2015/dsa-3330 http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html http://www.securityfocus.com/archive/1/536862/100/0/threaded http://www.securityfocus.com/bid/76272 http://www.securitytracker.com/id/10 • CWE-264: Permissions, Privileges, and Access Controls CWE-306: Missing Authentication for Critical Function •