CVE-2014-0367
https://notcve.org/view.php?id=CVE-2014-0367
Unspecified vulnerability in the Hyperion Essbase Administration Services component in Oracle Hyperion 11.1.2.1, 11.1.2.2, and 11.1.2.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Admin Console. Vulnerabilidad no especificada en el componente Hyperion Essbase Administration Services en Oracle Hyperion 11.1.2.1, 11.1.2.2 y 11.1.2.3, permite a usuarios autenticados remotamente afectar a la confidencialidad e integridad a través de vectores desconocidos relacionados con Admin Console. • http://osvdb.org/102114 http://secunia.com/advisories/56469 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64814 •
CVE-2013-3830
https://notcve.org/view.php?id=CVE-2013-3830
Unspecified vulnerability in the Hyperion Strategic Finance component in Oracle Hyperion 11.1.2.1 and 11.1.2.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Server. Vulnerabilidad no especificada en el componente Hyperion Strategic Finance de Oracle Hyperion 11.1.2.1 y 11.1.2.2 permite a usuarios remotos autenticados afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con Server. • http://osvdb.org/102113 http://secunia.com/advisories/56470 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64821 •
CVE-2013-3803 – Oracle Hyperion 11 - Directory Traversal
https://notcve.org/view.php?id=CVE-2013-3803
Unspecified vulnerability in the Hyperion BI+ component in Oracle Hyperion 11.1.1.3, 11.1.1.4.107 and earlier, 11.1.2.1.129 and earlier, and 11.1.2.2.305 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Intelligence Service. Vulnerabilidad sin especificar en el componente Hyperion BI+ en Oracle Hyperion 11.1.1.3, 11.1.1.4.107 y anteriores, 11.1.2.1.129 y anteriores, y 11.1.2.2.305 y anteriores, permite a usuarios autenticados remotamente comprometer la confidencialidad a través de vectores desconocidos relacionados con Intelligence Service. • https://www.exploit-db.com/exploits/27291 http://osvdb.org/95277 http://secunia.com/advisories/54220 http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html http://www.securityfocus.com/bid/61204 http://www.securitytracker.com/id/1028794 https://exchange.xforce.ibmcloud.com/vulnerabilities/85664 •
CVE-2012-3133
https://notcve.org/view.php?id=CVE-2012-3133
Buffer overflow in the DataDirect ODBC driver, as used in Oracle Hyperion Interactive Reporting 11.1.2.1 and 11.1.2.2, Essbase Server 11.1.2.1 and 11.1.2.2, Production Reporting Server 11.1.2.1 and 11.1.2.2, and Integration Services Server 11.1.2.1 and 11.1.2.2 has unknown impact and attack vectors. Desbordamiento de búfer en el controlador DataDirect ODBC, como se usa en Oracle Hyperion Interactive Reporting v11.1.2.1 and v11.1.2.2, Essbase Server v11.1.2.1 y v11.1.2.2, Production Reporting Server v11.1.2.1 y v11.1.2.2, e Integration Services Server v11.1.2.1 y v11.1.2.2 tiene un impacto y vectores de ataque desconocidos. • https://blogs.oracle.com/sunsecurity/entry/cve_2012_3133_buffer_overflow • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •