CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2014-2418 – Oracle Data Quality FileChooserDlg onChangeDirectory Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-2418
16 Apr 2014 — Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality, a different vulnerability than CVE-2014-2407, CVE-2014-2415, CVE-2014-2416, and CVE-2014-2417. Vulnerabilidad no especificada en el componente Oracle Data Integrator en Oracle Fusion Middleware 11.1.1.3.0 permite a atacantes remotos afectar a la confidencialidad, integridad y dispon... • http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2014-2470
https://notcve.org/view.php?id=CVE-2014-2470
16 Apr 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS Security. Vulnerabilidad no especificada en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, y 12.1.2.0 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores relacionado... • http://secunia.com/advisories/59847 •
CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2014-2404 – Oracle Access Manager Information Disclosure
https://notcve.org/view.php?id=CVE-2014-2404
16 Apr 2014 — Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 10.1.4.3, 11.1.1.3.0, 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0, 11.1.2.1.0, and 11.1.2.2.0 allows remote authenticated users to affect confidentiality via unknown vectors related to WebGate. Vulnerabilidad no especificada en el componente Oracle Access Manager en Oracle Fusion Middleware 10.1.4.3, 11.1.1.3.0, 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0, 11.1.2.1.0, y 11.1.2.2.0 permite a usuarios remotos autenticados afectar la co... • http://packetstormsecurity.com/files/127047/Oracle-Access-Manager-Information-Disclosure.html •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2014-2407 – Oracle Data Quality LoaderWizard ActiveX Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-2407
16 Apr 2014 — Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality, a different vulnerability than CVE-2014-2415, CVE-2014-2416, CVE-2014-2417, and CVE-2014-2418. Vulnerabilidad no especificada en el componente Oracle Data Integrator en Oracle Fusion Middleware 11.1.1.3.0 permite a atacantes remotos afectar a la confidencialidad, integridad y dispon... • http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2013-5813
https://notcve.org/view.php?id=CVE-2013-5813
16 Oct 2013 — Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, 11.1.1.7.0, and 11.1.1.8.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Content Server. Vulnerabilidad no especificada en el componente Oracle WebCenter Content en Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, 11.1.1.7.0 y 11.1.1.8.0 permite a atacantes remotos afectar a la confidencialidad e integridad a través de vectores desconocidos ... • http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html •
CVSS: 5.3EPSS: 93%CPEs: 8EXPL: 2CVE-2013-3827 – Oracle GlassFish Server 2.1.1/3.0.1 - Multiple Subcomponent Resource Identifier Traversal Arbitrary File Access
https://notcve.org/view.php?id=CVE-2013-3827
16 Oct 2013 — Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.3.0, 11.1.2.4.0, and 12.1.2.0.0; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.1 allows remote attackers to affect confidentiality via unknown vectors related to Java Server Faces or Web Container. Vulnerabilidad no especificada en el componente de Oracle GlassFish Server en Oracle F... • https://www.exploit-db.com/exploits/38802 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2013-3828 – Oracle BPEL Process Manager ScriptServlet Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-3828
16 Oct 2013 — Unspecified vulnerability in the Oracle Web Services component in Oracle Fusion Middleware 10.1.3.5.0 and 11.1.1.6.0 allows remote attackers to affect confidentiality via unknown vectors related to Test Page. Vulnerabilidad no especificada en el componente Oracle Web Services de Oracle Fusion Middleware 10.1.3.5.0 y 11.1.1.6.0 permite a atacantes remotos afectar la confidencialidad a través de vectores relacionados con Test Page. This vulnerability allows remote attackers to obtain sensitive information on ... • http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2013-3769
https://notcve.org/view.php?id=CVE-2013-3769
17 Jul 2013 — Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Site Studio. Vulnerabilidad no especificada en el componente Oracle WebCenter Content en Oracle Fusion Middleware v10.1.3.5.1, v11.1.1.6.0, y v11.1.1.7.0 permite a atacantes remotos afectar la integridad mediante vectores relacionados con Site Studio. • http://osvdb.org/95273 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2013-3770
https://notcve.org/view.php?id=CVE-2013-3770
17 Jul 2013 — Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Content Server. NOTE: the previous information is from the October 2013 CPU. Oracle has not commented on claims from a third party that the issue is related to "iDoc script injection" in the (1) cs and (2) urm components, which allows attackers to read "sensitive" files, ... • http://osvdb.org/95271 •
CVSS: 5.8EPSS: 0%CPEs: 3EXPL: 0CVE-2013-3772
https://notcve.org/view.php?id=CVE-2013-3772
17 Jul 2013 — Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Web Forms. Vulnerabilidad sin especificar en el componente Oracle WebCenter Content en Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, y 11.1.1.7.0 permite a atacantes remotos comprometer la integridad a través de vectores desconocidos relacionado con los Web Forms. • http://osvdb.org/95274 •