CVE-2016-1000031 in Oracle Documakerinfo

Summary

Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution

Reservation

09/22/2016

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
184878	Oracle Documaker Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
168281	Oracle Enterprise Data Quality General access control	284	Not defined	Official fix	CVE-2016-1000031
168218	Oracle Enterprise Manager Base Platform Reporting access control	284	Not defined	Official fix	CVE-2016-1000031
163355	Oracle Siebel Apps - Marketing Mktg/Email Mktg Stand-Alone access control	284	Not defined	Official fix	CVE-2016-1000031
163000	Oracle REST Data Services Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
158463	Oracle Rapid Planning Middle Tier access control	284	Not defined	Official fix	CVE-2016-1000031
158108	Oracle Communications Contacts Server Core access control	284	Not defined	Official fix	CVE-2016-1000031
158073	Oracle Database MapViewer access control	284	Not defined	Official fix	CVE-2016-1000031
153549	Oracle Knowledge Information Manager Console/Web Applications access control	284	Not defined	Official fix	CVE-2016-1000031
153469	Oracle Business Intelligence Enterprise Edition BI Platform Security access control	284	Not defined	Official fix	CVE-2016-1000031
148991	Oracle Utilities Work/Asset Management (v1) access control	284	Not defined	Official fix	CVE-2016-1000031
148968	Oracle Tape Library ACSLS Software access control	284	Not defined	Official fix	CVE-2016-1000031
143624	Oracle SOA Suite Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
143609	Oracle Virtual Directory Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
138149	Oracle Agile Engineering Data Management Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
138112	Oracle Retail Integration Bus Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
138111	Oracle MICROS Retail XBRi Loss Prevention Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
138036	Oracle Insurance Rules Palette Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
138035	Oracle Insurance Policy Administration J2EE Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
138034	Oracle Insurance Calculation Engine Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
137998	Oracle WebCenter Sites OpenSSL access control	284	Not defined	Official fix	CVE-2016-1000031
137942	Oracle FLEXCUBE Universal Banking jQuery access control	284	Not defined	Official fix	CVE-2016-1000031
137941	Oracle FLEXCUBE Enterprise Limits/Collateral Management jQuery access control	284	Not defined	Official fix	CVE-2016-1000031
137940	Oracle FLEXCUBE Core Banking jQuery access control	284	Not defined	Official fix	CVE-2016-1000031
137923	Oracle Application Testing Suite jackson-databind access control	284	Not defined	Official fix	CVE-2016-1000031
137882	Oracle Unified Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
137881	Oracle Online Mediation Controller Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
137879	Oracle Convergence Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
137876	Oracle Application Session Controller Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133758	Oracle Utilities Framework User access control	284	Not defined	Official fix	CVE-2016-1000031
133751	Oracle Agile PLM Application Server access control	284	Not defined	Official fix	CVE-2016-1000031
133750	Oracle Agile Recipe Management for Pharmaceuticals Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133740	Oracle Siebel CRM Oracle Knowledge access control	284	Not defined	Official fix	CVE-2016-1000031
133720	Oracle Retail Xstore Point of Service Xenvironment access control	284	Not defined	Official fix	CVE-2016-1000031
133717	Oracle Retail Order Broker System Administration access control	284	Not defined	Official fix	CVE-2016-1000031
133640	Oracle Hospitality Guest Access Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133638	Oracle Healthcare Master Person Index Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133594	Oracle WebCenter Portal Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133590	Oracle Identity Analytics Apache Commons FileUpload Local Privilege Escalation		Not defined	Official fix	CVE-2016-1000031
133588	Oracle Endeca Information Discovery Integrator Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133585	Oracle API Gateway Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133571	Oracle FLEXCUBE Private Banking Apache Commons FileUpload Local Privilege Escalation		Not defined	Official fix	CVE-2016-1000031
133570	Oracle Banking Platform Collections access control	284	Not defined	Official fix	CVE-2016-1000031
133559	Oracle Enterprise Manager Ops Center Networking access control	284	Not defined	Official fix	CVE-2016-1000031
133518	Oracle Primavera Unifier Apache Commons FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133516	Oracle Primavera P6 Enterprise Project Portfolio Management Web Access access control	284	Not defined	Official fix	CVE-2016-1000031
133495	Oracle Communications Service Broker Engineered System Edition Admin server FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
133494	Oracle Communications Service Broker Admin server FileUpload access control	284	Not defined	Official fix	CVE-2016-1000031
129674	Oracle Retail Service Backbone Install access control	284	Not defined	Official fix	CVE-2016-1000031
129673	Oracle Retail Returns Management Apache Commons Fileupload access control	284	Not defined	Official fix	CVE-2016-1000031

9 More entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 9 results.

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!