Agile PLM

DATE	CVE	VULNERABILITY TITLE	RISK
2023-07-18	CVE-2023-22039	Unspecified vulnerability in Oracle Agile PLM 9.3.6 Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: WebClient). network low complexity oracle	5.4
2022-05-13	CVE-2022-25762	Improper Resource Shutdown or Release vulnerability in multiple products If a web application sends a WebSocket message concurrently with the WebSocket connection closing when running on Apache Tomcat 8.5.0 to 8.5.75 or Apache Tomcat 9.0.0.M1 to 9.0.20, it is possible that the application will continue to use the socket after it has been closed. network low complexity apache oracle CWE-404	8.6
2022-04-19	CVE-2022-21467	Unspecified vulnerability in Oracle Agile PLM 9.3.6 Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: Attachments). network low complexity oracle	6.5
2022-01-24	CVE-2022-23437	Infinite Loop vulnerability in multiple products There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads. network low complexity apache oracle netapp CWE-835	6.5
2021-12-18	CVE-2021-45105	Uncontrolled Recursion vulnerability in multiple products Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. network high complexity apache netapp debian sonicwall oracle CWE-674	5.9
2021-11-17	CVE-2021-41164	Cross-site Scripting vulnerability in multiple products CKEditor4 is an open source WYSIWYG HTML editor. network low complexity ckeditor drupal oracle fedoraproject CWE-79	5.4
2021-11-10	CVE-2021-3572	A flaw was found in python-pip in the way it handled Unicode separators in git references. network low complexity pypa oracle	5.7
2021-10-26	CVE-2021-41182	Cross-site Scripting vulnerability in multiple products jQuery-UI is the official jQuery user interface library. network low complexity jqueryui fedoraproject netapp debian drupal oracle tenable CWE-79	6.1
2021-10-26	CVE-2021-41183	Cross-site Scripting vulnerability in multiple products jQuery-UI is the official jQuery user interface library. network low complexity jqueryui fedoraproject netapp debian drupal oracle tenable CWE-79	6.1
2021-10-26	CVE-2021-41184	Cross-site Scripting vulnerability in multiple products jQuery-UI is the official jQuery user interface library. network low complexity jqueryui fedoraproject netapp drupal tenable oracle CWE-79	6.1