Oracle

Jd Edwards Enterpriseone Tools

164 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 39.66%
  • Veröffentlicht 13.11.2017 22:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL ser...

Exploit
  • EPSS 55.29%
  • Veröffentlicht 04.05.2017 19:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial o...

  • EPSS 1.37%
  • Veröffentlicht 24.04.2017 19:59:03
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products (subcomponent: Web Runtime SEC). The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows unauthenticated attacker with networ...

  • EPSS 89.04%
  • Veröffentlicht 17.04.2017 21:59:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.

  • EPSS 61.8%
  • Veröffentlicht 09.07.2015 19:17:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers t...

  • EPSS 1.36%
  • Veröffentlicht 21.01.2015 15:28:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Products 9.1.5 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Portal SEC.

  • EPSS 0.9%
  • Veröffentlicht 18.01.2012 22:55:03
  • Zuletzt bearbeitet 16.06.2026 23:31:06

Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect integrity, related to Enterprise Infrastucture SEC (JDNET).

  • EPSS 1%
  • Veröffentlicht 18.01.2012 22:55:03
  • Zuletzt bearbeitet 16.06.2026 23:31:06

Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDNET).

  • EPSS 1.27%
  • Veröffentlicht 18.01.2012 22:55:03
  • Zuletzt bearbeitet 16.06.2026 23:31:06

Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote attackers to affect availability, related to Enterprise Infrastructure SEC (JDENET).

  • EPSS 1%
  • Veröffentlicht 18.01.2012 22:55:03
  • Zuletzt bearbeitet 16.06.2026 23:31:06

Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-232...