High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-10-15	CVE-2024-21190	Unspecified vulnerability in Oracle Fusion Middleware 12.2.1.4.0 Vulnerability in the Oracle Global Lifecycle Management FMW Installer product of Oracle Fusion Middleware (component: Cloning). network low complexity oracle	7.5
2024-10-15	CVE-2024-21191	Unspecified vulnerability in Oracle Fusion Middleware 12.2.1.4.0 Vulnerability in the Oracle Enterprise Manager Fusion Middleware Control product of Oracle Fusion Middleware (component: FMW Control Plugin). network low complexity oracle	7.6
2024-10-15	CVE-2024-21215	Unspecified vulnerability in Oracle Fusion Middleware 12.2.1.4.0/14.1.1.0.0 Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). network low complexity oracle	7.5
2021-07-21	CVE-2021-2351	Session Fixation vulnerability in Oracle products Vulnerability in the Advanced Networking Option component of Oracle Database Server. network high complexity oracle CWE-384	8.3
2020-11-02	CVE-2020-14750	Unspecified vulnerability in Oracle Fusion Middleware Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). network low complexity oracle	7.5
2019-08-20	CVE-2019-10086	Deserialization of Untrusted Data vulnerability in multiple products In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker to access the classloader via the class property available on all Java objects. network low complexity apache debian opensuse fedoraproject redhat oracle CWE-502	7.3
2015-08-14	CVE-2014-3576	Permissions, Privileges, and Access Controls vulnerability in multiple products The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command. network low complexity apache oracle CWE-264	7.5
2015-07-16	CVE-2015-4745	Arbitrary File Download vulnerability in Oracle Endeca Information Discovery Studio Unspecified vulnerability in the Oracle Endeca Information Discovery Studio component in Oracle Fusion Middleware 2.2.2, 2.3, 2.4, 3.0, and 3.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Integrator, a different vulnerability than CVE-2015-2602, CVE-2015-2603, CVE-2015-2604, CVE-2015-2605, and CVE-2015-2606. network low complexity oracle	7.5
2015-07-16	CVE-2015-2636	Remote Security vulnerability in Oracle Fusion Middleware 11.1.1.3.0 Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality based on Trillium, a different vulnerability than CVE-2015-0443, CVE-2015-0444, CVE-2015-0445, CVE-2015-0446, CVE-2015-2634, CVE-2015-2635, CVE-2015-4758, and CVE-2015-4759. network low complexity oracle	7.5
2015-07-16	CVE-2015-2606	Remote Code Execution vulnerability in Oracle Endeca Information Discovery Studio Unspecified vulnerability in the Oracle Endeca Information Discovery Studio component in Oracle Fusion Middleware 2.2.2, 2.3, 2.4, 3.0, and 3.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Integrator, a different vulnerability than CVE-2015-2602, CVE-2015-2603, CVE-2015-2604, CVE-2015-2605, and CVE-2015-4745. network low complexity oracle	7.5