Filtered by vendor Oracle
Subscribe
Search
Total
8935 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2010-3593 | 1 Oracle | 2 Argus Safety, Industry Applications | 2017-08-17 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the Health Sciences - Oracle Argus Safety component in Oracle Industry Applications 5.0, 5.0.1, 5.0.2, and 5.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Login and LDAP. | |||||
| CVE-2010-3594 | 1 Oracle | 1 Enterprise Manager Grid Control | 2017-08-17 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in the Real User Experience Insight component in Oracle Enterprise Manager Grid Control 6.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Processing. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party coordinator that this is SQL injection in rsynclogdird involving improper escaping of UTF-8 characters while processing log files. | |||||
| CVE-2011-0902 | 2 Oracle, Sun | 2 Sun Microsystems Sunscreen Firewall, Sunos | 2017-08-17 | 6.9 MEDIUM | N/A |
| Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified (1) PATH or (2) LD_LIBRARY_PATH environment variable. | |||||
| CVE-2010-3600 | 1 Oracle | 2 Database Server, Enterprise Manager Grid Control | 2017-08-17 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the Client System Analyzer component in Oracle Database Server 11.1.0.7 and 11.2.0.1 and Enterprise Manager Grid Control 10.2.0.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party coordinator that this issue involves an exposed JSP script that accepts XML uploads in conjunction with NULL bytes in an unspecified parameter that allow execution of arbitrary code. | |||||
| CVE-2010-4464 | 1 Oracle | 1 Sun Convergence | 2017-08-17 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Sun Convergence 1.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. | |||||
| CVE-2010-4416 | 1 Oracle | 1 Fusion Middleware | 2017-08-17 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle GoldenGate Veridata component in Oracle Fusion Middleware 3.0.0.4 allows remote attackers to affect availability via unknown vectors related to Server. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party researcher that this is a buffer overflow via a crafted XML soap request and a value that does not contain the expected 0x20 terminator character. | |||||
| CVE-2010-4417 | 1 Oracle | 1 Beehive | 2017-08-17 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the Services for Beehive component in Oracle Fusion Middleware 2.0.1.0, 2.0.1.1, 2.0.1.2, 2.0.1.2.1, and 2.0.1.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party coordinator that voice-servlet/prompt-qa/Index.jspf does not properly handle null (%00) bytes in the evaluation parameter that is used in a filename, which allows attackers to create a file with an executable extension and execute arbitrary JSP code. | |||||
| CVE-2010-4413 | 1 Oracle | 1 Database Server | 2017-08-17 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Scheduler Agent component in Oracle Database Server 11.1.0.7 and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2010-4439 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2017-08-17 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft and JDEdwards Suite 9.0 Bundle #14 and 9.1 Bundle #4 allows remote authenticated users to affect confidentiality via unknown vectors related to eProfile - Manager Desktop. | |||||
| CVE-2010-4438 | 1 Oracle | 2 Glassfish Server, Java System Message Queue | 2017-08-17 | 5.7 MEDIUM | N/A |
| Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service (JMS). | |||||
| CVE-2010-4430 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2017-08-17 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft and JDEdwards Suite 9.1 Update 2010-F allows remote authenticated users to affect confidentiality via unknown vectors related to Absence Management. | |||||
| CVE-2010-4418 | 1 Oracle | 2 Peoplesoft And Jdedwards Product Suite, Peoplesoft Enterprise | 2017-08-17 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.50.11 through 8.50.15 and 8.51GA through 8.51.05 allows remote attackers to affect confidentiality, integrity, and availability, related to PIA Core Technology. | |||||
| CVE-2010-4419 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2017-08-17 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise CRM component in Oracle PeopleSoft and JDEdwards Suite 9.0 Bundle #31 and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Order Capture. | |||||
| CVE-2010-4420 | 1 Oracle | 1 Database Server | 2017-08-17 | 3.6 LOW | N/A |
| Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows local users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-4421 | 1 Oracle | 1 Database Server | 2017-08-17 | 6.8 MEDIUM | N/A |
| Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2010-4423 | 2 Microsoft, Oracle | 2 Windows, Database Server | 2017-08-17 | 6.9 MEDIUM | N/A |
| Unspecified vulnerability in the Cluster Verify Utility component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1, when running on Windows, allows local users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2010-4424 | 1 Oracle | 2 Peoplesoft And Jdedwards Product Suite, Peoplesoft Enterprise | 2017-08-17 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.0 through 8.49.29, 8.50.0 through 8.50.14, and 8.51.0 through 8.51.04 allows remote attackers to affect availability via unknown vectors related to the Security sub-component. | |||||
| CVE-2010-4425 | 1 Oracle | 1 Fusion Middleware | 2017-08-17 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 10.1.3.3.2, 10.1.3.4.0, and 10.1.3.4.1 allows remote authenticated users to affect integrity via unknown vectors related to Web Server. | |||||
| CVE-2010-4426 | 1 Oracle | 2 Peoplesoft And Jdedwards Product Suite, Peoplesoft Enterprise | 2017-08-17 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.0 through 8.49.29, 8.50.0 through 8.50.14, and 8.51.0 through 8.51.04 allows remote attackers to affect integrity, related to PIA Core Technology. | |||||
| CVE-2010-4427 | 1 Oracle | 1 Fusion Middleware | 2017-08-17 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 10.1.3.4.0, 10.1.3.4.1, and 11.1.1.3 allows remote authenticated users to affect integrity via unknown vectors related to Web Server. | |||||
| CVE-2010-4428 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2017-08-17 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft and JDEdwards Suite 9.0 Update 2010-F allows remote authenticated users to affect confidentiality via unknown vectors related to Absence Management. | |||||
| CVE-2010-4429 | 1 Oracle | 1 Supply Chain Products Suite | 2017-08-17 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Web Client, a different vulnerability than CVE-2010-3505. | |||||
| CVE-2010-4432 | 1 Oracle | 1 Supply Chain Products Suite | 2017-08-17 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Oracle Transportation Manager component in Oracle Supply Chain Products Suite 5.5.06, 6.0, 6.1, and 6.2 allows remote authenticated users to affect confidentiality via unknown vectors related to UI Infrastructure. | |||||
| CVE-2010-4434 | 1 Oracle | 2 Peoplesoft And Jdedwards Product Suite, Peoplesoft Enterprise | 2017-08-17 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.50.0 through 8.50.14 and 8.51.0 through 8.51.04 allows remote authenticated users to affect confidentiality via unknown vectors related to Portal. | |||||
| CVE-2010-4436 | 1 Oracle | 1 Sunmc | 2017-08-17 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Sun Management Center (SunMC) 4.0 allows remote attackers to affect confidentiality via unknown vectors related to Web Console. | |||||
| CVE-2010-4437 | 1 Oracle | 1 Fusion Middleware | 2017-08-17 | 5.8 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.0, 9.1, 9.2.4, 10.0.2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Servlet Container. | |||||
| CVE-2010-3597 | 1 Oracle | 1 Fusion Middleware | 2017-08-17 | 1.9 LOW | N/A |
| Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.0 allows local users to affect availability, related to Outside In Viewer SDK. | |||||
| CVE-2010-4441 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2017-08-17 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft and JDEdwards Suite 9.1 Bundle #4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Talent Acquisition Manager. | |||||
| CVE-2010-4444 | 2 Oracle, Sun | 2 Opensso, Java System Access Manager | 2017-08-17 | 6.8 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Sun Java System Access Manager and Oracle OpenSSO 7, 7.1, and 8 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2010-4445 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2017-08-17 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft and JDEdwards Suite 9.0 Bundle #14 and 9.1 Bundle #4 allows remote authenticated users to affect confidentiality via unknown vectors related to Talent Acquisition Manager. | |||||
| CVE-2010-4449 | 1 Oracle | 1 Audit Vault | 2017-08-17 | 10.0 HIGH | N/A |
| Unspecified vulnerability in the Audit Vault component in Oracle Audit Vault 10.2.3.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party coordinator that this issue is related to a crafted parameter in an action.execute request to the av component on TCP port 5700. | |||||
| CVE-2010-4455 | 1 Oracle | 1 Fusion Middleware | 2017-08-17 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.2 and 11.1.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Apache Plugin. | |||||
| CVE-2010-4461 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2017-08-17 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #23, 9.0 Bundle #14, and 9.1 Bundle #4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to ePerformance. | |||||
| CVE-2010-3598 | 1 Oracle | 1 Fusion Middleware | 2017-08-17 | 7.1 HIGH | N/A |
| Unspecified vulnerability in the Oracle Document Capture component in Oracle Fusion Middleware 10.1.3.4 and 10.1.3.5 allows remote attackers to affect integrity via unknown vectors related to Import Export Utility. | |||||
| CVE-2010-4506 | 1 Oracle | 1 Passlogix V-go Self-service Password Reset And Oem | 2017-08-17 | 6.2 MEDIUM | N/A |
| Passlogix v-GO Self-Service Password Reset (SSPR) and OEM before 7.0A allows physically proximate attackers to execute arbitrary programs without authentication by triggering use of an invalid SSL certificate and using the Internet Explorer interface to navigate through the filesystem via a "Save As" dialog that is reachable from the "Certificate Export" wizard. | |||||
| CVE-2010-3505 | 1 Oracle | 1 Supply Chain Products Suite | 2017-08-17 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Folders, Files & Attachments, a different vulnerability than CVE-2010-4429. | |||||
| CVE-2010-0862 | 1 Oracle | 1 Industry Product Suite | 2017-08-17 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Retail - Oracle Retail Markdown Optimization component in Oracle Industry Product Suite 13.1 allows remote attackers to affect integrity via unknown vectors related to Online Help. | |||||
| CVE-2010-0863 | 1 Oracle | 1 Industry Product Suite | 2017-08-17 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Retail - Oracle Retail Plan In-Season component in Oracle Industry Product Suite 12.2 allows remote attackers to affect integrity via unknown vectors related to Online Help. | |||||
| CVE-2010-0864 | 1 Oracle | 1 Industry Product Suite | 2017-08-17 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Retail - Oracle Retail Place In-Season component in Oracle Industry Product Suite 12.2 allows remote attackers to affect integrity via unknown vectors related to Online Help. | |||||
| CVE-2010-0877 | 1 Oracle | 2 Jd Edwards Enterpriseone, Peoplesoft Enterprise | 2017-08-17 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.26 and 8.50.07 allows remote attackers to affect integrity via unknown vectors. | |||||
| CVE-2010-0878 | 1 Oracle | 2 Jd Edwards Enterpriseone, Peoplesoft Enterprise | 2017-08-17 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.26 and 8.50.07 allows remote authenticated users to affect integrity via unknown vectors. | |||||
| CVE-2010-0879 | 1 Oracle | 2 Jd Edwards Enterpriseone, Peoplesoft Enterprise | 2017-08-17 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.26 and 8.50.07 allows remote authenticated users to affect confidentiality via unknown vectors. | |||||
| CVE-2010-0880 | 1 Oracle | 2 Jd Edwards Enterpriseone, Peoplesoft Enterprise | 2017-08-17 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.26 and 8.50.07 allows remote attackers to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-0883 | 1 Oracle | 1 Sun Products Suite | 2017-08-17 | 2.1 LOW | N/A |
| Unspecified vulnerability in the Sun Cluster component in Oracle Sun Product Suite 3.1 and 3.2 allows local users to affect confidentiality via unknown vectors related to Data Service for Oracle E-Business Suite, a different vulnerability than CVE-2010-0884. | |||||
| CVE-2010-0884 | 1 Oracle | 1 Sun Products Suite | 2017-08-17 | 2.1 LOW | N/A |
| Unspecified vulnerability in the Sun Cluster component in Oracle Sun Product Suite 3.1 and 3.2 allows local users to affect confidentiality via unknown vectors related to Data Service for Oracle E-Business Suite, a different vulnerability than CVE-2010-0883. | |||||
| CVE-2010-0888 | 1 Oracle | 1 Sun Products Suite | 2017-08-17 | 10.0 HIGH | N/A |
| Unspecified vulnerability in the Sun Ray Server Software component in Oracle Sun Product Suite 4.0, 4.1, and 4.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Device Services. | |||||
| CVE-2010-0889 | 1 Oracle | 1 Opensolaris | 2017-08-17 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite OpenSolaris snv_68 through snv_128 allows local users to affect confidentiality via unknown vectors related to the Kernel. | |||||
| CVE-2010-0893 | 1 Oracle | 1 Sun Products Suite | 2017-08-17 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Sun Convergence component in Oracle Sun Product Suite 1.0 allows remote attackers to affect confidentiality via unknown vectors related to Mail. | |||||
| CVE-2010-0894 | 1 Oracle | 2 Opensso Enterprise, Sun Products Suite | 2017-08-17 | 5.8 MEDIUM | N/A |
| Unspecified vulnerability in the Sun Java System Access Manager component in Oracle Sun Product Suite 7.1, 7 2005Q4, and OpenSSO Enterprise 8.0 allows remote attackers to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-0895 | 1 Oracle | 1 Opensolaris | 2017-08-17 | 3.6 LOW | N/A |
| Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite OpenSolaris snv_119 allows local users to affect integrity and availability via unknown vectors related to IP Filter. | |||||