Vulnerabilities > Oracle > Hospitality Cruise Shipboard Property Management System > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-07-12 CVE-2021-30640 Improper Encoding or Escaping of Output vulnerability in multiple products
A vulnerability in the JNDI Realm of Apache Tomcat allows an attacker to authenticate using variations of a valid user name and/or to bypass some of the protection provided by the LockOut Realm.
network
high complexity
apache oracle debian CWE-116
6.5
2021-07-12 CVE-2021-33037 HTTP Request Smuggling vulnerability in multiple products
Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility to request smuggling when used with a reverse proxy.
network
low complexity
apache debian oracle mcafee CWE-444
5.3
2019-11-08 CVE-2019-10219 A vulnerability was found in Hibernate-Validator.
network
low complexity
redhat netapp oracle
6.1
2019-01-16 CVE-2019-2410 Unspecified vulnerability in Oracle Hospitality Cruise Shipboard Property Management System 8.0.8
Vulnerability in the Oracle Hospitality Cruise Shipboard Property Management System component of Oracle Hospitality Applications (subcomponent: DGS RES Online, FMS Sender, FMS Receiver, OHC WPF Security).
local
low complexity
oracle
5.1
2019-01-16 CVE-2019-2409 Unspecified vulnerability in Oracle Hospitality Cruise Shipboard Property Management System 8.0.8
Vulnerability in the Oracle Hospitality Cruise Shipboard Property Management System component of Oracle Hospitality Applications (subcomponent: SPMS Suite).
local
low complexity
oracle
6.7
2018-10-17 CVE-2018-3181 Unspecified vulnerability in Oracle Hospitality Cruise Shipboard Property Management System 8.0
Vulnerability in the Oracle Hospitality Cruise Shipboard Property Management System component of Oracle Hospitality Applications (subcomponent: OHC ENOAD).
local
low complexity
oracle
5.5
2018-07-18 CVE-2018-3001 Unspecified vulnerability in Oracle Hospitality Cruise Shipboard Property Management System 8.0
Vulnerability in the Oracle Hospitality Cruise Shipboard Property Management System component of Oracle Hospitality Applications (subcomponent: SPMS Suite).
local
low complexity
oracle
6.2
2017-10-19 CVE-2017-10361 Unspecified vulnerability in Oracle Hospitality Cruise Shipboard Property Management System 8.0.2.0
Vulnerability in the Oracle Hospitality Cruise Shipboard Property Management System component of Oracle Hospitality Applications (subcomponent: OHC DRS).
network
low complexity
oracle
6.4
2017-08-08 CVE-2017-10228 Unspecified vulnerability in Oracle Hospitality Cruise Shipboard Property Management System 8.0.0.0
Vulnerability in the Oracle Hospitality Cruise Shipboard Property Management System component of Oracle Hospitality Applications (subcomponent: Module).
network
low complexity
oracle
5.4