Enterprise Manager Base Platform

DATE	CVE	VULNERABILITY TITLE	RISK
2020-09-04	CVE-2020-24977	Out-of-bounds Read vulnerability in multiple products GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. network low complexity xmlsoft debian fedoraproject opensuse netapp oracle CWE-125	6.5
2020-07-15	CVE-2020-2982	Unspecified vulnerability in Oracle Enterprise Manager Base Platform 13.3.0.0/13.4.0.0 Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Enterprise Config Management). network low complexity oracle	7.1
2020-07-08	CVE-2020-11994	Injection vulnerability in multiple products Server-Side Template Injection and arbitrary file disclosure on Camel templating components network low complexity apache oracle CWE-74	7.5
2020-06-05	CVE-2020-12723	Classic Buffer Overflow vulnerability in multiple products regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls. network low complexity perl netapp fedoraproject opensuse oracle CWE-120	7.5
2020-06-05	CVE-2020-10878	Integer Overflow or Wraparound vulnerability in multiple products Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. network low complexity perl fedoraproject opensuse netapp oracle CWE-190	8.6
2020-06-05	CVE-2020-10543	Integer Overflow or Wraparound vulnerability in multiple products Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. network low complexity perl fedoraproject opensuse oracle CWE-190	8.2
2020-05-14	CVE-2020-11973	Deserialization of Untrusted Data vulnerability in multiple products Apache Camel Netty enables Java deserialization by default. network low complexity apache oracle CWE-502 critical	9.8
2020-05-14	CVE-2020-11972	Deserialization of Untrusted Data vulnerability in multiple products Apache Camel RabbitMQ enables Java deserialization by default. network low complexity apache oracle CWE-502 critical	9.8
2020-05-14	CVE-2020-11971	Apache Camel's JMX is vulnerable to Rebind Flaw. network low complexity apache oracle	7.5
2020-05-01	CVE-2020-10683	XXE vulnerability in multiple products dom4j before 2.0.3 and 2.1.x before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. network low complexity dom4j-project oracle opensuse netapp canonical CWE-611 critical	9.8