CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2014-4256
https://notcve.org/view.php?id=CVE-2014-4256
17 Jul 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality and integrity via vectors related to WLS - Deployment. Vulnerabilidad no especificada en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0 y 12.1.2.0 permite a atacantes remotos afectar la confidencialidad e integridad a través de vectores relacionados con WLS - Deployment. • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2014-4217
https://notcve.org/view.php?id=CVE-2014-4217
17 Jul 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, and 12.1.1.0 allows remote attackers to affect integrity via vectors related to WLS - Web Services. Vulnerabilidad no especificada en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0 y 12.1.1.0 permite a atacantes remotos afectar la integridad a través de vectores relacionados con WLS - Web Services. • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 3.1EPSS: 0%CPEs: 2EXPL: 0CVE-2014-4222
https://notcve.org/view.php?id=CVE-2014-4222
17 Jul 2014 — Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect confidentiality via vectors related to plugin 1.1. Vulnerabilidad no especificada en el componente Oracle HTTP Server en Oracle Fusion Middleware 11.1.1.7.0 y 12.1.2.0 permite a usuarios remotos autenticados afectar a la confidencialidad a través de vectores relacionados con el plugin 1.1. • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2014-2479
https://notcve.org/view.php?id=CVE-2014-2479
17 Jul 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS - Web Services. Vulnerabilidad no especificada en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, y 12.1.2.0 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vectores descono... • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2014-2481
https://notcve.org/view.php?id=CVE-2014-2481
17 Jul 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2014-2480. Vulnerabilidad no especificada en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, y 12.1.2.0 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a tr... • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 7.5EPSS: 4%CPEs: 4EXPL: 0CVE-2014-4202
https://notcve.org/view.php?id=CVE-2014-4202
17 Jul 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect availability via vectors related to WLS - Web Services. Vulnerabilidad no especificada en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, y 12.1.2.0 permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos relacionados con WLS - Web Services. • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2014-2480
https://notcve.org/view.php?id=CVE-2014-2480
17 Jul 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2014-2481. Vulnerabilidad no especificada en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, y 12.1.2.0 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a tr... • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2014-4201
https://notcve.org/view.php?id=CVE-2014-4201
17 Jul 2014 — Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect availability via vectors related to WLS - Web Services. Vulnerabilidad no especificada en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, y 12.1.2.0 permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos relacionados con WLS - Web Services. • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 0CVE-2014-2493
https://notcve.org/view.php?id=CVE-2014-2493
17 Jul 2014 — Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.2.4.0, and 12.1.2.0.0 allows remote attackers to affect confidentiality and availability via vectors related to ADF Faces. Vulnerabilidad no especificada en el componente Oracle JDeveloper en Oracle Fusion Middleware 11.1.1.7.0, 11.1.2.4.0, y 12.1.2.0.0 permite a atacantes remotos afectar la confidencialidad y disponibilidad a través de vectores desconocidos relacionados con ADF Faces. • http://seclists.org/fulldisclosure/2014/Dec/23 •
CVSS: 7.5EPSS: 2%CPEs: 3EXPL: 0CVE-2014-0191 – libxml2: external parameter entity loaded when entity substitution is disabled
https://notcve.org/view.php?id=CVE-2014-0191
12 May 2014 — The xmlParserHandlePEReference function in parser.c in libxml2 before 2.9.2, as used in Web Listener in Oracle HTTP Server in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 and other products, loads external parameter entities regardless of whether entity substitution or validation is enabled, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XML document. La función xmlParserHandlePEReference en parser.c en libxml2 en versiones anteriores a 2.9.2, ... • http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html • CWE-611: Improper Restriction of XML External Entity Reference •