CVE-2019-17359 in Data Integratorinfo

Summary

The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory allocation, and resultant OutOfMemoryError error, via crafted ASN.1 data. This is fixed in 1.64.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

10/08/2019

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
168304Oracle Data Integrator Runtime Java agent for ODI denial of service404Not definedOfficial fixCVE-2019-17359
163042Oracle Communications Session Route Manager denial of service404Not definedOfficial fixCVE-2019-17359
163037Oracle Communications Diameter Signaling Router IDIH denial of service404Not definedOfficial fixCVE-2019-17359
158399Oracle PeopleSoft Enterprise HCM Global Payroll Switzerland Global Payroll for Switzerland allocation of resources770Not definedOfficial fixCVE-2019-17359
158293Oracle Business Process Management Suite Runtime allocation of resources770Not definedOfficial fixCVE-2019-17359
158246Oracle FLEXCUBE Private Banking Core allocation of resources770Not definedOfficial fixCVE-2019-17359
158128Oracle Communications Convergence S/MIME Configuration allocation of resources770Not definedOfficial fixCVE-2019-17359
153637Oracle Retail Xstore Point of Service Xenvironment allocation of resources770Not definedOfficial fixCVE-2019-17359
153612Oracle PeopleSoft Enterprise PeopleTools Security allocation of resources770Not definedOfficial fixCVE-2019-17359
153492Oracle WebCenter Portal Security allocation of resources770Not definedOfficial fixCVE-2019-17359
153491Oracle SOA Suite Installation allocation of resources770Not definedOfficial fixCVE-2019-17359
153487Oracle Managed File Transfer MFT Runtime Server allocation of resources770Not definedOfficial fixCVE-2019-17359
153443Oracle Financial Services Analytical Applications Infrastructure allocation of resources770Not definedOfficial fixCVE-2019-17359
148876Oracle Hospitality Guest Access Base allocation of resources770Not definedOfficial fixCVE-2019-17359
148839Oracle WebLogic Server Third Party Tools allocation of resources770Not definedOfficial fixCVE-2019-17359
143189Bouncy Castle Crypto ASN.1 allocation of resources770Not definedNot definedCVE-2019-17359

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!