Vulnerabilities > Oracle > Fusion Middleware > Medium

DATE CVE VULNERABILITY TITLE RISK
2015-01-21 CVE-2015-0367 Remote Security vulnerability in Oracle Access Manager
Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.1, and 11.1.2.2 allows remote attackers to affect integrity via vectors related to SSO Engine.
network
low complexity
oracle
5.0
5.0
2015-01-21 CVE-2015-0362 Remote Security vulnerability in Oracle Fusion Middleware 11.1.1.7.0
Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7 allows remote attackers to affect confidentiality via unknown vectors related to BI Publisher Security.
network
low complexity
oracle
5.0
5.0
2015-01-21 CVE-2014-6580 Remote Security vulnerability in Oracle Fusion Middleware 11.1.1.7.0/11.1.2.2.0
Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.7 and 11.1.2.2 allows remote attackers to affect integrity via unknown vectors.
network
oracle
4.3
4.3
2015-01-21 CVE-2014-6576 Remote Security vulnerability in Oracle Adaptive Access Manager
Unspecified vulnerability in the Oracle Adaptive Access Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.1, and 11.1.2.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to OAM Integration.
network
low complexity
oracle
5.5
5.5
2015-01-21 CVE-2014-6571 Remote Security vulnerability in Oracle Fusion Middleware 11.1.1.7.0/12.1.2.0.0/12.1.3.0.0
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Web Listener, a different vulnerability than CVE-2011-1944.
network
oracle
6.8
6.8
2015-01-21 CVE-2014-6569 Remote Security vulnerability in Oracle WebLogic Server
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality via vectors related to CIE Related Components.
network
low complexity
oracle
5.0
5.0
2015-01-21 CVE-2014-6548 Local Security vulnerability in Oracle Fusion Middleware 11.1.1.7
Unspecified vulnerability in the Oracle SOA Suite component in Oracle Fusion Middleware 11.1.1.7 allows local users to affect confidentiality, integrity, and availability via vectors related to B2B Engine.
local
low complexity
oracle
4.6
4.6
2015-01-21 CVE-2014-6526 Remote Security vulnerability in Oracle Fusion Middleware 7.0
Unspecified vulnerability in the Oracle Directory Server Enterprise Edition component in Oracle Fusion Middleware 7.0 allows remote attackers to affect integrity via unknown vectors related to Admin Console.
network
oracle
4.3
4.3
2015-01-21 CVE-2014-0191 Denial of Service vulnerability in Oracle Fusion Middleware 11.1.1.7.0/12.1.2.0.0/12.1.3.0.0
The xmlParserHandlePEReference function in parser.c in libxml2 before 2.9.2, as used in Web Listener in Oracle HTTP Server in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 and other products, loads external parameter entities regardless of whether entity substitution or validation is enabled, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XML document.
network
oracle
4.3
4.3
2014-10-15 CVE-2014-6554 Remote Security vulnerability in Oracle Fusion Middleware 11.1.2.1.0/11.1.2.2.0
Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.2.1 and 11.1.2.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Admin Console.
network
low complexity
oracle
5.5
5.5