Vulnerabilities > Oracle > Agile Product Lifecycle Management Framework > 9.3.3

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-15	CVE-2020-2920	Unspecified vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.3/9.3.5/9.3.6 Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: Security). network oracle	5.8
2019-05-01	CVE-2019-0227	Server-Side Request Forgery (SSRF) vulnerability in multiple products A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. high complexity apache oracle CWE-918	7.5
2018-08-02	CVE-2018-8032	Cross-site Scripting vulnerability in multiple products Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services. network low complexity apache oracle debian CWE-79	6.1
2016-04-21	CVE-2016-3431	Remote Security vulnerability in Oracle Supply Chain Products Suite Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3420. network high complexity oracle	3.6
2016-04-21	CVE-2016-3420	Remote Security vulnerability in Oracle Supply Chain Products Suite Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3431. network high complexity oracle	3.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.