Oracle

Weblogic Server

309 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2020-14637

  • EPSS 0.63%
  • Veröffentlicht 15.07.2020 18:15:28
  • Zuletzt bearbeitet 21.11.2024 05:03:45

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Sample apps). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthentica...

6.1

CVE-2020-14638

  • EPSS 0.63%
  • Veröffentlicht 15.07.2020 18:15:28
  • Zuletzt bearbeitet 21.11.2024 05:03:45

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Sample apps). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthentica...

4.9

CVE-2020-14622

  • EPSS 0.73%
  • Veröffentlicht 15.07.2020 18:15:27
  • Zuletzt bearbeitet 21.11.2024 05:03:42

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows high pr...

9.8

CVE-2020-14625

  • EPSS 8.27%
  • Veröffentlicht 15.07.2020 18:15:27
  • Zuletzt bearbeitet 21.11.2024 05:03:43

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with n...

8.2

CVE-2020-14588

  • EPSS 2.03%
  • Veröffentlicht 15.07.2020 18:15:24
  • Zuletzt bearbeitet 21.11.2024 05:03:37

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allow...

7.5

CVE-2020-14589

  • EPSS 3.21%
  • Veröffentlicht 15.07.2020 18:15:24
  • Zuletzt bearbeitet 21.11.2024 05:03:37

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allow...

6.1

CVE-2020-14572

  • EPSS 0.88%
  • Veröffentlicht 15.07.2020 18:15:23
  • Zuletzt bearbeitet 21.11.2024 05:03:34

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated ...

6.8

CVE-2020-14557

  • EPSS 1.87%
  • Veröffentlicht 15.07.2020 18:15:20
  • Zuletzt bearbeitet 21.11.2024 05:03:32

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Difficult to exploit vulnerability allows unauthen...

5.3

CVE-2020-10693

  • EPSS 0.29%
  • Veröffentlicht 06.05.2020 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:55:52

A flaw was found in Hibernate Validator version 6.1.2.Final. A bug in the message interpolation processor enables invalid EL expressions to be evaluated as if they were valid. This flaw allows attackers to bypass input sanitation (escaping, stripping...

6.1

CVE-2020-11022

Exploit
  • EPSS 2.39%
  • Veröffentlicht 29.04.2020 22:15:11
  • Zuletzt bearbeitet 13.04.2026 15:16:29

In jQuery starting with 1.12.0 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in...