CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-0414
https://notcve.org/view.php?id=CVE-2015-0414
21 Jan 2015 — Unspecified vulnerability in the Oracle SOA Suite component in Oracle Fusion Middleware 11.1.1.7 and 12.1.3.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Fabric Layer. Vulnerabilidad no especificada en el componente Oracle SOA Suite en Oracle Fusion Middleware 11.1.1.7 y 12.1.3.0 permite a usuarios remotos autenticados afectar la confidencialidad a través de vectores no conocidos relacionados con Fabric Layer. • http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2015-0386
https://notcve.org/view.php?id=CVE-2015-0386
21 Jan 2015 — Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect availability via unknown vectors related to Web Listener, a different vulnerability than CVE-2013-0338, CVE-2013-2877, and CVE-2014-0191. Vulnerabilidad no especificada en el componente Oracle HTTP Server en Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, y 12.1.3.0 permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos... • http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2014-6571
https://notcve.org/view.php?id=CVE-2014-6571
21 Jan 2015 — Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Web Listener, a different vulnerability than CVE-2011-1944. Vulnerabilidad no especificada en el componente Oracle HTTP Server de Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0 y 12.1.3.0 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a tra... • http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2014-6499
https://notcve.org/view.php?id=CVE-2014-6499
15 Oct 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to WebLogic Tuxedo Connector. Vulnerabilidad sin especificar en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, y 12.1.3.0 permite a atacantes remotos afectar a la confidencialidad, la integridad a tra... • http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html •
CVSS: 4.7EPSS: 0%CPEs: 4EXPL: 0CVE-2014-6522
https://notcve.org/view.php?id=CVE-2014-6522
15 Oct 2014 — Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7, 11.1.2.4, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect integrity via vectors related to ADF Faces. Vulnerabilidad sin especificar en el componente Oracle JDevelope en Oracle Fusion Middleware 11.1.1.7, 11.1.2.4, 12.1.2.0, y 12.1.3.0 permite a atacantes remotos afectar a la integridad a través de vectores relacionados con ADF Faces. • http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html •
CVSS: 4.1EPSS: 0%CPEs: 5EXPL: 0CVE-2014-6534
https://notcve.org/view.php?id=CVE-2014-6534
15 Oct 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote authenticated users to affect integrity via vectors related to WLS Console. Vulnerabilidad sin especificar en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, y 12.1.3.0 permite a usuarios remotos autenticados afectar a la integridad a través de vectores relacionados con la consola WLS. • http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html •
CVSS: 7.5EPSS: 3%CPEs: 3EXPL: 0CVE-2014-0191 – libxml2: external parameter entity loaded when entity substitution is disabled
https://notcve.org/view.php?id=CVE-2014-0191
12 May 2014 — The xmlParserHandlePEReference function in parser.c in libxml2 before 2.9.2, as used in Web Listener in Oracle HTTP Server in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 and other products, loads external parameter entities regardless of whether entity substitution or validation is enabled, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XML document. La función xmlParserHandlePEReference en parser.c en libxml2 en versiones anteriores a 2.9.2, ... • http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 5.3EPSS: 0%CPEs: 46EXPL: 0CVE-2012-1677
https://notcve.org/view.php?id=CVE-2012-1677
17 Jan 2013 — Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware allows remote attackers to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente Oracle Application Server Single Sign-On en Oracle Fusion Middleware permite a atacantes remotos afectar a la integridad a través de vectores desconocidos. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •
CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 0CVE-2012-3135
https://notcve.org/view.php?id=CVE-2012-3135
17 Jul 2012 — Unspecified vulnerability in the Oracle JRockit component in Oracle Fusion Middleware 28.2.3 and before, and 27.7.2 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente de Oracle JRockit en Oracle Fusion Middleware v28.2.3 y anteriores, y v27.7.2 y versiones anteriores, permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •
CVSS: 10.0EPSS: 1%CPEs: 27EXPL: 0CVE-2012-1695
https://notcve.org/view.php?id=CVE-2012-1695
03 May 2012 — Unspecified vulnerability in the Oracle JRockit component in Oracle Fusion Middleware 28.2.2 and earlier, and JDK/JRE 5 and 6 27.7.1 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Oracle JRockit en Oracle Fusion Middleware v28.2.2 y anteriores, y JDK/JRE 5 y 6 27.7.1 y anteriores permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores no especi... • http://secunia.com/advisories/48864 •