CVE-2026-46812
- EPSS 0.25%
- Veröffentlicht 16.06.2026 19:27:27
- Zuletzt bearbeitet 16.06.2026 19:27:27
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Authentication Engine). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.1.0. Easily exploitable vulnerability allows unauthenticated attacker ...
CVE-2026-35314
- EPSS 0.31%
- Veröffentlicht 16.06.2026 19:27:08
- Zuletzt bearbeitet 16.06.2026 19:27:08
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Web Server Plugin). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.1.0. Easily exploitable vulnerability allows unauthenticated attacker with...
CVE-2026-35313
- EPSS 0.41%
- Veröffentlicht 16.06.2026 19:27:08
- Zuletzt bearbeitet 16.06.2026 19:27:08
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Authentication Engine). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.1.0. Easily exploitable vulnerability allows low privileged attacker w...
CVE-2026-35261
- EPSS 0.27%
- Veröffentlicht 16.06.2026 19:26:54
- Zuletzt bearbeitet 16.06.2026 19:26:54
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Authentication Engine). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.1.0. Easily exploitable vulnerability allows unauthenticated attacker ...
CVE-2023-21859
- EPSS 0.23%
- Veröffentlicht 18.01.2023 00:15:14
- Zuletzt bearbeitet 21.11.2024 07:43:47
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Authentication Engine). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows high privileged attacker with logon to ...
CVE-2022-39412
- EPSS 1.7%
- Veröffentlicht 18.10.2022 21:15:15
- Zuletzt bearbeitet 21.11.2024 07:18:14
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Admin Console). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via ...
CVE-2022-39405
- EPSS 1.03%
- Veröffentlicht 18.10.2022 21:15:15
- Zuletzt bearbeitet 21.11.2024 07:18:13
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Authentication Engine). The supported version that is affected is 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network acc...
CVE-2021-35587
- EPSS 96.28%
- Veröffentlicht 19.01.2022 12:15:09
- Zuletzt bearbeitet 27.10.2025 17:08:36
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: OpenSSO Agent). Supported versions that are affected are 11.1.2.3.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacke...
- EPSS 1.59%
- Veröffentlicht 21.07.2021 15:15:25
- Zuletzt bearbeitet 21.11.2024 06:02:57
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Rest interfaces for Access Mgr). The supported version that is affected is 11.1.2.3.0. Easily exploitable vulnerability allows high privileged attacker with ne...
CVE-2021-29425
- EPSS 10.61%
- Veröffentlicht 13.04.2021 07:15:12
- Zuletzt bearbeitet 21.11.2024 06:01:04
In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but ...