Vulnerabilities > Oracle > Business Process Management Suite > High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-10-17	CVE-2018-3246	Unspecified vulnerability in Oracle products Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). network low complexity oracle	7.5
2018-09-19	CVE-2018-11761	XXE vulnerability in multiple products In Apache Tika 0.1 to 1.18, the XML parsers were not configured to limit entity expansion. network low complexity apache oracle CWE-611	7.5
2018-06-05	CVE-2018-1000180	Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier have a flaw in the Low-level interface to RSA key pair generator, specifically RSA Key Pairs generated in low-level API with added certainty may have less M-R tests than expected. network low complexity bouncycastle debian oracle netapp redhat CWE-327	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.