5.5.0.0.0

DATE	CVE	VULNERABILITY TITLE	RISK
2020-07-15	CVE-2020-14626	Unspecified vulnerability in Oracle Business Intelligence Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web General). network oracle	6.8
2020-07-15	CVE-2020-14609	Unspecified vulnerability in Oracle Business Intelligence Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web Answers). network low complexity oracle	7.5
2020-06-23	CVE-2020-9480	Missing Authentication for Critical Function vulnerability in multiple products In Apache Spark 2.4.5 and earlier, a standalone resource manager's master may be configured to require authentication (spark.authenticate) via a shared secret. network low complexity apache oracle CWE-306 critical	9.8
2020-04-15	CVE-2020-2950	Unspecified vulnerability in Oracle Business Intelligence Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web General). network low complexity oracle	7.5
2020-01-02	CVE-2019-14862	Cross-site Scripting vulnerability in multiple products There is a vulnerability in knockout before version 3.5.0-beta, where after escaping the context of the web application, the web application delivers data to its users along with other trusted dynamic content, without validating it. network knockoutjs redhat oracle CWE-79	4.3
2019-11-08	CVE-2019-10219	Cross-site Scripting vulnerability in multiple products A vulnerability was found in Hibernate-Validator. network low complexity redhat netapp oracle CWE-79	6.1