Oracle Communications Session Route Manager 8.2.0/8.2.1/8.2.2 xml external entity reference

entryeditHistoryDiffjsonxmlCTI

A vulnerability classified as very critical has been found in Oracle Communications Session Route Manager 8.2.0/8.2.1/8.2.2 (Cloud Software). Affected is an unknown part. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1064693311/22/2020VulD...cvss2_nvd_aiPnvd.nist.gov11/22/2020accepted70
1064693211/22/2020VulD...cvss2_nvd_iiPnvd.nist.gov11/22/2020accepted70
1064693111/22/2020VulD...cvss2_nvd_ciPnvd.nist.gov11/22/2020accepted70
1064693011/22/2020VulD...cvss2_nvd_auNnvd.nist.gov11/22/2020accepted70
1064692911/22/2020VulD...cvss2_nvd_acLnvd.nist.gov11/22/2020accepted70
1064692811/22/2020VulD...cvss2_nvd_avNnvd.nist.gov11/22/2020accepted70
1064692711/22/2020VulD...cvss3_nvd_aHnvd.nist.gov11/22/2020accepted70
1064692611/22/2020VulD...cvss3_nvd_iHnvd.nist.gov11/22/2020accepted70
1064692511/22/2020VulD...cvss3_nvd_cHnvd.nist.gov11/22/2020accepted70
1064692411/22/2020VulD...cvss3_nvd_sUnvd.nist.gov11/22/2020accepted70
1064692311/22/2020VulD...cvss3_nvd_uiNnvd.nist.gov11/22/2020accepted70
1064692211/22/2020VulD...cvss3_nvd_prNnvd.nist.gov11/22/2020accepted70
1064692111/22/2020VulD...cvss3_nvd_acLnvd.nist.gov11/22/2020accepted70
1064692011/22/2020VulD...cvss3_nvd_avNnvd.nist.gov11/22/2020accepted70
1064691911/22/2020VulD...cwe611 (XML External Entity)nvd.nist.gov11/22/2020accepted70
1064691811/22/2020VulD...cve_nvd_summaryinitDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows XXE attacks via a job description.cve.mitre.org11/22/2020accepted70
1064691711/22/2020VulD...cve_assigned1563487200cve.mitre.org11/22/2020accepted70
1064693611/21/2020VulD...cvss3_nvd_basescore9.8nist.gov11/21/2020accepted90
1064693511/21/2020VulD...cvss2_nvd_basescore7.5nist.gov11/21/2020accepted90
1064693411/21/2020VulD...price_0day$5k-$25ksee documentation11/21/2020accepted90

Do you need the next level of professionalism?

Upgrade your account now!