Vulnerabilities > Oracle > Business Intelligence > 12.2.1.4.0

DATE CVE VULNERABILITY TITLE RISK
2020-12-08 CVE-2020-1971 NULL Pointer Dereference vulnerability in multiple products
The X.509 GeneralName type is a generic type for representing different types of names. 		5.9
5.9
2020-11-12 CVE-2019-17566 Server-Side Request Forgery (SSRF) vulnerability in multiple products
Apache Batik is vulnerable to server-side request forgery, caused by improper input validation by the "xlink:href" attributes.
network
low complexity
apache oracle CWE-918
7.5
7.5
2020-11-12 CVE-2020-13954 Cross-site Scripting vulnerability in multiple products
By default, Apache CXF creates a /services page containing a listing of the available endpoint names and addresses.
network
low complexity
apache netapp oracle CWE-79
6.1
6.1
2020-07-15 CVE-2020-14690 Unspecified vulnerability in Oracle Business Intelligence
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Actions).
network
low complexity
oracle
8.2
8.2
2020-07-15 CVE-2020-14626 Unspecified vulnerability in Oracle Business Intelligence
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web General).
network
high complexity
oracle
8.1
8.1
2020-07-15 CVE-2020-14609 Unspecified vulnerability in Oracle Business Intelligence
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web Answers).
network
low complexity
oracle
8.6
8.6
2020-07-15 CVE-2020-14548 Unspecified vulnerability in Oracle Business Intelligence 12.2.1.3.0/12.2.1.4.0
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web General).
network
high complexity
oracle
3.4
3.4
2020-04-15 CVE-2020-2950 Unspecified vulnerability in Oracle Business Intelligence
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web General).
network
low complexity
oracle
critical
 9.8
9.8
2020-01-15 CVE-2020-2537 Unspecified vulnerability in Oracle Business Intelligence 12.2.1.3.0/12.2.1.4.0
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Actions).
network
low complexity
oracle
7.1
7.1
2020-01-15 CVE-2020-2535 Unspecified vulnerability in Oracle Business Intelligence 12.2.1.3.0/12.2.1.4.0
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Server).
network
low complexity
oracle
4.7
4.7