Oracle

Business Intelligence

83 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.1

CVE-2020-2531

  • EPSS 0.99%
  • Published 15.01.2020 17:15:15
  • Last modified 21.11.2024 05:25:27

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: BI Platform Security). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Difficult to exploit vulnerability allows ...

4.7

CVE-2020-2535

  • EPSS 1.75%
  • Published 15.01.2020 17:15:15
  • Last modified 21.11.2024 05:25:27

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Server). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauth...

6.1

CVE-2019-14862

Exploit
  • EPSS 0.23%
  • Published 02.01.2020 15:15:12
  • Last modified 21.11.2024 04:27:31

There is a vulnerability in knockout before version 3.5.0-beta, where after escaping the context of the web application, the web application delivers data to its users along with other trusted dynamic content, without validating it.

6.1

CVE-2019-10219

  • EPSS 1.67%
  • Published 08.11.2019 15:15:11
  • Last modified 07.07.2025 14:15:21

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

5.3

CVE-2019-3012

  • EPSS 2.02%
  • Published 16.10.2019 18:15:34
  • Last modified 21.11.2024 04:41:59

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: BI Platform Security). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerabili...

8.6

CVE-2019-2905

  • EPSS 3.32%
  • Published 16.10.2019 18:15:27
  • Last modified 21.11.2024 04:41:46

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Installation). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenti...

7.5

CVE-2019-2900

  • EPSS 2.33%
  • Published 16.10.2019 18:15:27
  • Last modified 21.11.2024 04:41:46

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Actions). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unaut...

6.4

CVE-2019-2897

  • EPSS 0.33%
  • Published 16.10.2019 18:15:27
  • Last modified 21.11.2024 04:41:45

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Actions). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low p...

3.4

CVE-2019-2605

  • EPSS 0.89%
  • Published 23.04.2019 19:32:50
  • Last modified 21.11.2024 04:41:12

Vulnerability in the Oracle Business Intelligence Enterprise Edition component of Oracle Fusion Middleware (subcomponent: Web Catalog). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Difficult to exploit vulnerability...

5.9

CVE-2019-1559

  • EPSS 5.05%
  • Published 27.02.2019 23:29:00
  • Last modified 21.11.2024 04:36:48

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid...