Oracle

Communications Order And Service Management

13 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2025-30729

  • EPSS 0.03%
  • Published 15.04.2025 20:31:17
  • Last modified 29.04.2025 20:03:32

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications (component: Security). Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows lo...

5.3

CVE-2025-21554

  • EPSS 0.07%
  • Published 21.01.2025 21:15:22
  • Last modified 20.06.2025 16:58:12

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications (component: Security). Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows un...

6.3

CVE-2025-21542

  • EPSS 0.03%
  • Published 21.01.2025 21:15:20
  • Last modified 20.06.2025 16:57:56

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications (component: Security). Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows lo...

5.4

CVE-2025-21544

  • EPSS 0.04%
  • Published 21.01.2025 21:15:20
  • Last modified 20.06.2025 16:58:04

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications (component: Security). Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows lo...

4.3

CVE-2023-22088

  • EPSS 0.13%
  • Published 17.10.2023 22:15:14
  • Last modified 21.11.2024 07:44:15

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications (component: User Management). Supported versions that are affected are 7.4.0 and 7.4.1. Easily exploitable vulnerability allows lo...

5.5

CVE-2021-36373

  • EPSS 0.15%
  • Published 14.07.2021 07:15:08
  • Last modified 21.11.2024 06:13:37

When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prio...

5.5

CVE-2021-36374

  • EPSS 0.18%
  • Published 14.07.2021 07:15:08
  • Last modified 21.11.2024 06:13:38

When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. ...

5.8

CVE-2021-29425

Exploit
  • EPSS 0.48%
  • Published 13.04.2021 07:15:12
  • Last modified 21.11.2024 06:01:04

In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but ...

6.3

CVE-2020-1945

  • EPSS 0.02%
  • Published 14.05.2020 16:15:12
  • Last modified 21.11.2024 05:11:42

Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The fixcrlf and replaceregexp tasks also copy files fr...

7.5

CVE-2019-0227

Exploit
  • EPSS 90.74%
  • Published 01.05.2019 21:29:00
  • Last modified 08.05.2025 18:13:51

A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subversion repository, legacy users are encouraged to buil...