) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/a:oracle:fusion_middleware:12.1.2.0.0
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2015-4909 |
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.4.0, 12.1.2.0.0, and 12.1.3.0.0 allows remote attackers to affect integrity via vectors related to ADF Faces. Published: October 21, 2015; 8:00:12 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2015-4838 |
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.4.0, 12.1.2.0.0, and 12.1.3.0.0 allows remote authenticated users to affect confidentiality via vectors related to ADF Faces. Published: October 21, 2015; 7:59:05 PM -0400 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
| CVE-2015-4744 |
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect integrity via unknown vectors related to Java Server Faces. Published: July 16, 2015; 7:00:38 AM -0400 |
V3.x:(not available) V2.0: 2.6 LOW |
| CVE-2015-4742 |
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.2.4.0, 12.1.2.0.0, and 12.1.3.0.0 allows remote attackers to affect availability via vectors related to ADF Faces. Published: July 16, 2015; 7:00:37 AM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2015-2623 |
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2, and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0, allows remote attackers to affect integrity via unknown vectors related to Java Server Faces. Published: July 16, 2015; 6:59:46 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2015-0482 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 12.1.2.0 and 12.1.3.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to WLS-WebServices. Published: April 16, 2015; 12:59:34 PM -0400 |
V3.x:(not available) V2.0: 6.0 MEDIUM |
| CVE-2015-0449 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect integrity via unknown vectors related to Console. Published: April 16, 2015; 12:59:08 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2015-0386 |
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect availability via unknown vectors related to Web Listener, a different vulnerability than CVE-2013-0338, CVE-2013-2877, and CVE-2014-0191. Published: January 21, 2015; 1:59:30 PM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2014-6571 |
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Web Listener, a different vulnerability than CVE-2011-1944. Published: January 21, 2015; 10:28:10 AM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
| CVE-2014-6569 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality via vectors related to CIE Related Components. Published: January 21, 2015; 10:28:08 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2014-0191 |
The xmlParserHandlePEReference function in parser.c in libxml2 before 2.9.2, as used in Web Listener in Oracle HTTP Server in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 and other products, loads external parameter entities regardless of whether entity substitution or validation is enabled, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XML document. Published: January 21, 2015; 9:59:00 AM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2014-6534 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote authenticated users to affect integrity via vectors related to WLS Console. Published: October 15, 2014; 6:55:07 PM -0400 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
| CVE-2014-6522 |
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7, 11.1.2.4, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect integrity via vectors related to ADF Faces. Published: October 15, 2014; 6:55:07 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2014-6499 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to WebLogic Tuxedo Connector. Published: October 15, 2014; 6:55:06 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
| CVE-2014-4267 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS Core Components. Published: July 17, 2014; 7:17:11 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
| CVE-2014-4256 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality and integrity via vectors related to WLS - Deployment. Published: July 17, 2014; 7:17:10 AM -0400 |
V3.x:(not available) V2.0: 5.8 MEDIUM |
| CVE-2014-4255 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS - Security and Policy. Published: July 17, 2014; 7:17:10 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
| CVE-2014-4254 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS - Web Services. Published: July 17, 2014; 7:17:10 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
| CVE-2014-4253 |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect availability via vectors related to WebLogic Server JVM. Published: July 17, 2014; 7:17:10 AM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2014-4251 |
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect integrity via vectors related to plugin 1.1. Published: July 17, 2014; 7:17:10 AM -0400 |
V3.x:(not available) V2.0: 3.5 LOW |