Total
199 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2009-0990 | 1 Oracle | 1 Application Server | 2023-12-10 | 5.5 MEDIUM | N/A |
Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, and 10.1.3.3.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2009-0989. | |||||
CVE-2008-4017 | 1 Oracle | 1 Application Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in the OC4J component in Oracle Application Server 10.1.2.3 allows remote attackers to affect confidentiality via unknown vectors. | |||||
CVE-2008-7235 | 1 Oracle | 2 Application Server, E-business Suite | 2023-12-10 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Forms component in Oracle Application Server 10.1.2.2 and E-Business Suite 12.0.3 allows remote attackers to affect integrity via unknown vectors, aka AS04. | |||||
CVE-2008-3975 | 1 Oracle | 1 Application Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3 and 10.1.2.3 allows remote attackers to affect integrity via unknown vectors, a different vulnerability than CVE-2008-3977. | |||||
CVE-2009-0993 | 1 Oracle | 1 Application Server | 2023-12-10 | 7.5 HIGH | N/A |
Unspecified vulnerability in the OPMN component in Oracle Application Server 10.1.2.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is a format string vulnerability that allows remote attackers to execute arbitrary code via format string specifiers in an HTTP POST URI, which are not properly handled when logging to opmn/logs/opmn.log. | |||||
CVE-2009-1999 | 1 Oracle | 1 Application Server | 2023-12-10 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in the Business Intelligence Enterprise Edition component in unspecified Oracle Application Server versions allows remote attackers to affect integrity via unknown vectors. | |||||
CVE-2009-1017 | 1 Oracle | 1 Application Server | 2023-12-10 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, 10.1.3.3.3, and 10.1.3.4 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2009-0994. | |||||
CVE-2009-1009 | 2 Ibm, Oracle | 2 Websphere Portal, Application Server | 2023-12-10 | 4.4 MEDIUM | N/A |
Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.1.9 allows local users to affect confidentiality, integrity, and availability, related to HTML. | |||||
CVE-2008-3986 | 1 Oracle | 1 Application Server | 2023-12-10 | 1.0 LOW | N/A |
Unspecified vulnerability in the Oracle Discoverer Administrator component in Oracle Application Server 9.0.4.3 and 10.1.2.2 allows local users to affect confidentiality via unknown vectors. | |||||
CVE-2009-1010 | 2 Ibm, Oracle | 2 Websphere Portal, Application Server | 2023-12-10 | 4.4 MEDIUM | N/A |
Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTML, a different vulnerability than CVE-2009-1008. | |||||
CVE-2008-7237 | 1 Oracle | 1 Application Server | 2023-12-10 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3 and 10.1.2.2 allows remote authenticated users to affect confidentiality via unknown vectors, aka AS06. | |||||
CVE-2008-1814 | 1 Oracle | 3 Application Server, Collaboration Suite, Database | 2023-12-10 | 9.0 HIGH | N/A |
Unspecified vulnerability in the Oracle Secure Enterprise Search or Ultrasearch component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3; Application Server 9.0.4.3 and 10.1.2.2; and Oracle Collaboration Suite 10.1.2; has unknown impact and remote attack vectors, aka DB04. | |||||
CVE-2008-1812 | 1 Oracle | 2 Application Server, Database 9i | 2023-12-10 | 10.0 HIGH | N/A |
Unspecified vulnerability in the Oracle Enterprise Manager component in Oracle Database 9.0.1.5 FIPS+; Application Server 1.0.2.2; and Enterprise Manager for AS 1.0.2.2 and Database 9.0.1.5 has unknown impact and local attack vectors, aka EM01. | |||||
CVE-2009-1976 | 1 Oracle | 1 Application Server | 2023-12-10 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in the HTTP Server component in Oracle Application Server 10.1.2.3 allows remote attackers to affect integrity via unknown vectors. | |||||
CVE-2009-1990 | 1 Oracle | 1 Application Server | 2023-12-10 | 1.7 LOW | N/A |
Unspecified vulnerability in the Business Intelligence Enterprise Edition component in Oracle Application Server 10.1.3.4.1 allows local users to affect confidentiality via unknown vectors. | |||||
CVE-2008-5438 | 1 Oracle | 1 Application Server | 2023-12-10 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.3 and 10.1.4.2 allows remote attackers to affect integrity via unknown vectors. | |||||
CVE-2008-2589 | 1 Oracle | 2 Application Server, Oracle Portal Component | 2023-12-10 | 6.4 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3, 10.1.2.2, and 10.1.4.1 has unknown impact and remote attack vectors. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on reliable researcher claims that this issue is a SQL injection vulnerability in the WWV_RENDER_REPORT package that allows remote attackers to execute arbitrary SQL (PL/SQL) commands via the second argument to the SHOW procedure. | |||||
CVE-2008-3977 | 1 Oracle | 1 Application Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3 and 10.1.2.3 allows remote attackers to affect integrity via unknown vectors, a different vulnerability than CVE-2008-3975. | |||||
CVE-2008-3987 | 1 Oracle | 1 Application Server | 2023-12-10 | 1.0 LOW | N/A |
Unspecified vulnerability in the Oracle Discoverer Desktop component in Oracle Application Server 10.1.2.3 allows local users to affect confidentiality via unknown vectors. | |||||
CVE-2008-2619 | 1 Oracle | 2 Application Server, E-business Suite | 2023-12-10 | 1.7 LOW | N/A |
Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors. |