CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2016-0437
https://notcve.org/view.php?id=CVE-2016-0437
21 Jan 2016 — Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applications 13.4, 14.0, and 14.1 allows local users to affect confidentiality via vectors related to Mobile POS, a different vulnerability than CVE-2016-0434, CVE-2016-0436, and CVE-2016-0438. Vulnerabilidad no especificada en el componente Oracle Retail Point-of-Service en Oracle Retail Applications 13.4, 14.0 y 14.1 permite a usuarios locales afectar a la confidencialidad a través de vectores relacionados con Mobil... • http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2016-0438
https://notcve.org/view.php?id=CVE-2016-0438
21 Jan 2016 — Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applications 13.4, 14.0, and 14.1 allows local users to affect confidentiality via vectors related to Mobile POS, a different vulnerability than CVE-2016-0434, CVE-2016-0436, and CVE-2016-0437. Vulnerabilidad no especificada en el componente Oracle Retail Point-of-Service en Oracle Retail Applications 13.4, 14.0 y 14.1 permite a usuarios locales afectar a la confidencialidad a través de vectores relacionados con Mobil... • http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2015-4827
https://notcve.org/view.php?id=CVE-2015-4827
21 Oct 2015 — Unspecified vulnerability in the Oracle Retail Open Commerce Platform component in Oracle Retail Applications 3.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Framework. Vulnerabilidad no especificada en el componente Oracle Retail Open Commerce Platform en Oracle Retail Applications 3.0 permite a atacantes remotos afectar a la confidencialidad e integridad a través de vectores desconocidos relacionados con el Framework. • http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html •
CVSS: 4.3EPSS: 0%CPEs: 9EXPL: 0CVE-2015-0466
https://notcve.org/view.php?id=CVE-2015-0466
16 Apr 2015 — Unspecified vulnerability in the Oracle Retail Back Office component in Oracle Retail Applications 12.0, 12.0IN, 13.0, 13.1, 13.2, 13.3, 13.4, 14.0, and 14.1 allows remote attackers to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente Oracle Retail Back Office en Oracle Retail Applications 12.0, 12.0IN, 13.0, 13.1, 13.2, 13.3, 13.4, 14.0, y 14.1 permite a atacantes remotos afectar la integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html •
CVSS: 5.3EPSS: 0%CPEs: 6EXPL: 0CVE-2015-0494
https://notcve.org/view.php?id=CVE-2015-0494
16 Apr 2015 — Unspecified vulnerability in the Oracle Retail Central Office component in Oracle Retail Applications 13.1, 13.2, 13.3, 13.4, 14.0, and 14.1 allows remote attackers to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente Oracle Retail Central Office en Oracle Retail Applications 13.1, 13.2, 13.3, 13.4, 14.0, y 14.1 permite a atacantes remotos afectar la integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html •
CVSS: 9.8EPSS: 0%CPEs: 10EXPL: 0CVE-2015-0390
https://notcve.org/view.php?id=CVE-2015-0390
21 Jan 2015 — Unspecified vulnerability in the MICROS Retail component in Oracle Retail Applications Xstore: 3.2.1, 3.4.2, 3.5.0, 4.0.1, 4.5.1, 4.8.0, 5.0.3, 5.5.3, 6.0.6, and 6.5.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Xstore Point of Sale. Vulnerabilidad no especificada en el componente MICROS Retail en Oracle Retail Applications Xstore: 3.2.1, 3.4.2, 3.5.0, 4.0.1, 4.5.1, 4.8.0, 5.0.3, 5.5.3, 6.0.6, y 6.5.2 permite a atacantes remotos afectar la co... • http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html •
CVSS: 9.8EPSS: 92%CPEs: 74EXPL: 4CVE-2014-0050 – Apache Commons FileUpload and Apache Tomcat - Denial of Service
https://notcve.org/view.php?id=CVE-2014-0050
07 Feb 2014 — MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's intended exit conditions. MultipartStream.java en Apache Commons FileUpload anterior a 1.3.1, utilizado en Apache Tomcat, JBoss Web y otros productos, permite a atacantes remotos causar una denegación de servicio (bucle infinito y consumo de CPU... • https://packetstorm.news/files/id/180508 • CWE-264: Permissions, Privileges, and Access Controls •