Oracle

Agile Product Lifecycle Management

57 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-21565

  • EPSS 0.11%
  • Published 21.01.2025 21:15:23
  • Last modified 29.04.2025 20:01:19

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Install). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to c...

8.1

CVE-2025-21564

  • EPSS 0.15%
  • Published 21.01.2025 21:15:23
  • Last modified 29.04.2025 20:01:07

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Agile Integration Services). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network ac...

6.5

CVE-2025-21560

  • EPSS 0.08%
  • Published 21.01.2025 21:15:22
  • Last modified 29.04.2025 20:00:33

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: SDK-Software Development Kit). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network ...

9.9

CVE-2025-21556

  • EPSS 0.28%
  • Published 21.01.2025 21:15:22
  • Last modified 29.04.2025 20:00:22

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Agile Integration Services). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network ac...

7.5

CVE-2024-21287

Warning
  • EPSS 73.96%
  • Published 18.11.2024 22:15:05
  • Last modified 29.11.2024 15:26:04

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Software Development Kit, Process Extension). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows unauthenticated attack...

6.5

CVE-2024-21091

  • EPSS 0.49%
  • Published 16.04.2024 22:15:29
  • Last modified 29.05.2025 19:22:56

Vulnerability in the Oracle Agile Product Lifecycle Management for Process product of Oracle Supply Chain (component: Data Import). The supported version that is affected is 6.2.4.2. Easily exploitable vulnerability allows low privileged attacker w...

8.8

CVE-2024-20953

Warning
  • EPSS 76.97%
  • Published 17.02.2024 02:15:49
  • Last modified 10.03.2025 20:23:29

Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: Export). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Or...

5.4

CVE-2021-41165

  • EPSS 0.11%
  • Published 17.11.2021 20:15:10
  • Last modified 21.11.2024 06:25:38

CKEditor4 is an open source WYSIWYG HTML editor. In affected version a vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4. The vulnerability allowed to inject malformed comments HTML byp...

6.1

CVE-2020-2920

  • EPSS 1.07%
  • Published 15.04.2020 14:15:35
  • Last modified 08.05.2025 18:13:51

Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: Security). Supported versions that are affected are 9.3.3, 9.3.5 and 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP...

5.8

CVE-2020-1935

  • EPSS 1.01%
  • Published 24.02.2020 22:15:11
  • Last modified 21.11.2024 05:11:38

In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some invalid HTTP headers to be parsed as valid. This led to a possibility of HTTP Request Smug...