Oracle Application Server Vulnérabilités

Chronologie

L'année dernière

Version

9.0.4.324
15.0.312
16.0.310
7.19
9.0.2.39

Contre-mesures

Official Fix112
Temporary Fix0
Workaround3
Unavailable1
Not Defined91

Exploitabilité

High1
Functional0
Proof-of-Concept91
Unproven0
Not Defined115

Vecteur d'accès

Not Defined0
Physical0
Local30
Adjacent0
Network177

Authentification

Not Defined0
High1
Low40
None166

Interaction de l'utilisateur

Not Defined0
Required32
None175

C3BM Index

L'année dernière

CVSSv3 Base

≤10
≤20
≤32
≤413
≤514
≤656
≤716
≤845
≤928
≤1033

CVSSv3 Temp

≤10
≤20
≤33
≤415
≤528
≤644
≤735
≤834
≤926
≤1022

VulDB

≤10
≤20
≤32
≤413
≤514
≤656
≤715
≤845
≤927
≤1035

NVD

≤10
≤20
≤30
≤41
≤51
≤67
≤78
≤812
≤97
≤1011

CNA

≤10
≤20
≤30
≤40
≤51
≤61
≤70
≤81
≤91
≤101

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤63
≤71
≤85
≤96
≤1010

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k0
<2k0
<5k5
<10k55
<25k75
<50k61
<100k9
≥100k2

Exploiter aujourd'hui

<1k152
<2k23
<5k15
<10k6
<25k10
<50k1
<100k0
≥100k0

Exploiter le volume du marché

L'année dernière

🔴 CTI Activités

Affected Versions (105): 0.9.8, 1, 1.0, 1.0.1, 1.0.2, 1.0.2.0.1, 1.0.2.1s, 1.0.2.2, 1.1.8.26, 2, 2.0.0.1, 2.0.0.2, 2.1, 2.1.1, 3, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.1, 3.1.1, 3.1.2, 4.0, 4.0.8, 4.0.8.2, 5.1, 5.6.2, 6.0, 6.0.8.26 Ps17, 6.0.8.26(ps17), 6.1, 6.2, 7, 7.0, 7.0.4.3, 7.0.4.4, 7.1, 7.4.9, 8, 8.0, 8.1, 8.1.7, 8.1.9, 8.2, 8.3, 9, 9.0, 9.0.0.4, 9.0.1, 9.0.2, 9.0.2.0.1, 9.0.2.3, 9.0.3, 9.0.3.1, 9.0.4, 9.0.4.1, 9.0.4.2, 9.0.4.3, 9.2.0.1, 9.2.0.6, 9.2.1, 10.1.0.4.2, 10.1.0.5, 10.1.2, 10.1.2.0.1, 10.1.2.0.2, 10.1.2.2, 10.1.2.3, 10.1.3, 10.1.3.1, 10.1.3.2, 10.1.3.3, 10.1.3.4, 10.1.3.4.1, 10.1.4.1, 10g, 12.1.3, 13.1, 13.2, 13.3, 13.3.3, 13.4, 13.4.3, 14.0, 14.0.3, 14.0.3.26, 14.1, 14.1.3, 14.1.3.37, 14.1.3.46, 14.1.3.47, 15.0, 15.0.2, 15.0.3, 15.0.3.1, 15.0.3.115, 15.0.3.116, 16, 16.0, 16.0.3, 16.0.3.24, 16.0.3.26

Link to Product Website: https://www.oracle.com

Type de logiciel: Application Server Software

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
18/07/20236.56.3Oracle Retail Predictive Application Server RPAS Server dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20863
18/07/20237.06.9Oracle Communications Converged Application Server - Service Controller Third Party dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-1436
18/04/20239.89.6Oracle Retail Predictive Application Server RPAS Server buffer overflow$25k-$100k$25k-$100kNot DefinedOfficial Fix0.02CVE-2022-37434
18/04/20238.18.0Oracle Retail Predictive Application Server RPAS Server chiffrement faible$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2020-35168
17/01/20239.89.6Oracle Communications Converged Application Server Core Remote Code Execution$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2023-21890
19/10/20226.56.3Oracle Retail Predictive Application Server RPAS Server dénie de service$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-22971
19/10/20227.57.3Oracle Communications Evolved Communications Application Server Platform dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-36518
19/10/20227.57.3Oracle Communications Converged Application Server-Service Controller Platform dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-28165
19/04/20226.66.4Oracle Communications Evolved Communications Application Server SDC/SCF elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-44832
19/10/20215.55.4Oracle Retail Predictive Application Server Apache Ant dénie de service$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-36374
19/10/20217.87.6Oracle Retail Predictive Application Server Spring Framework elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-22118
19/10/20215.35.2Oracle Communications Converged Application Server - Service Controller Apache Commons IO divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-29425
20/07/20215.55.3Oracle Communications Evolved Communications Application Server Apache Groovy divulgation de l'information$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-17521
20/07/20217.37.0Oracle Communications Evolved Communications Application Server Apache Commons BeanUtils elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-10086
20/07/20217.57.2Oracle Communications Evolved Communications Application Server jackson-databind XML External Entity$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-25649
21/04/20216.56.2Oracle Retail Predictive Application Server RPAS Server divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3740
21/04/20217.37.0Oracle Retail Predictive Application Server RPAS Fusion Client elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-10086
21/04/20217.57.2Oracle Retail Predictive Application Server RPAS Fusion Client vulnérabilité inconnue$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-11979
21/04/20217.77.3Oracle Retail Predictive Application Server RPAS Fusion Client Privilege Escalation$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-5421
21/04/20217.57.2Oracle Application Server OpenSSL dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-1967
21/04/20214.84.6Oracle Communications Converged Application Server SC Admin server vulnérabilité inconnue$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-27218
19/01/20215.95.8Oracle Retail Predictive Application Server RPAS Server dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-45105
19/01/20218.38.1Oracle Retail Predictive Application Server RPAS Server Remote Code Execution$25k-$100k$0-$5kNot DefinedOfficial Fix0.03CVE-2021-2351
17/12/20206.36.3Oracle Application Server Websocket elévation de privilèges$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2020-25096
20/10/20203.73.6Oracle Retail Predictive Application Server RPAS Fusion Client divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-9488

182 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 182 results.

plus d'entrées par Oracle

PrécédentAperçuSuivant

Do you know our Splunk app?

Download it now for free!