Oracle

Agile Engineering Data Management

30 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2019-0227

Exploit
  • EPSS 90.74%
  • Published 01.05.2019 21:29:00
  • Last modified 08.05.2025 18:13:51

A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subversion repository, legacy users are encouraged to buil...

6.1

CVE-2018-8032

  • EPSS 2.34%
  • Published 02.08.2018 13:29:00
  • Last modified 08.05.2025 18:13:51

Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.

5.8

CVE-2017-10161

  • EPSS 0.41%
  • Published 19.10.2017 17:29:00
  • Last modified 20.04.2025 01:37:25

Vulnerability in the Oracle Engineering Data Management component of Oracle Supply Chain Products Suite (subcomponent: Web Services Security). Supported versions that are affected are 6.1.3.0 and 6.2.2.0. Difficult to exploit vulnerability allows una...

7.5

CVE-2017-3730

Exploit
  • EPSS 46.04%
  • Published 04.05.2017 19:29:00
  • Last modified 20.04.2025 01:37:25

In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial o...

9.8

CVE-2016-8735

Warning
  • EPSS 93.9%
  • Published 06.04.2017 21:59:00
  • Last modified 20.04.2025 01:37:25

Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because...

8.1

CVE-2016-5518

  • EPSS 0.66%
  • Published 25.10.2016 14:29:54
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to webfil...

10

CVE-2016-3468

  • EPSS 5.57%
  • Published 21.07.2016 10:12:21
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Instal...

3.1

CVE-2016-3428

  • EPSS 0.31%
  • Published 21.04.2016 11:00:22
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect availability via vectors related to Engineering Communication Interface.

1.5

CVE-2016-0498

  • EPSS 0.07%
  • Published 21.01.2016 03:00:46
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.2.2, 6.1.3.0, and 6.2.0.0 allows local users to affect confidentiality via unknown vectors related to Install.

4.3

CVE-2016-0497

  • EPSS 0.35%
  • Published 21.01.2016 03:00:45
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.2.2, 6.1.3.0, and 6.2.0.0 allows remote attackers to affect integrity via unknown vectors related to Web Client.