Vulnerabilities > Oracle > Knowledge > 8.6.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-15 | CVE-2020-2932 | Unspecified vulnerability in Oracle Knowledge Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). network oracle | 4.3 |
| 2020-04-15 | CVE-2020-2931 | Unspecified vulnerability in Oracle Knowledge Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Web Applications - InfoCenter). | 7.5 |
| 2020-04-15 | CVE-2020-2795 | Unspecified vulnerability in Oracle Knowledge 8.6.0/8.6.1/8.6.2 Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). network oracle | 6.0 |
| 2020-04-15 | CVE-2020-2791 | Unspecified vulnerability in Oracle Knowledge 8.6.0/8.6.1/8.6.2 Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). | 7.5 |
| 2020-04-15 | CVE-2020-2553 | Unspecified vulnerability in Oracle Knowledge Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). network oracle | 5.8 |
| 2020-04-15 | CVE-2020-2524 | Unspecified vulnerability in Oracle Knowledge Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: InQuira Search). network oracle | 4.3 |
| 2020-04-15 | CVE-2020-2522 | Unspecified vulnerability in Oracle Knowledge 8.6.0/8.6.1 Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). network oracle | 4.3 |
| 2019-05-01 | CVE-2019-0227 | Server-Side Request Forgery (SSRF) vulnerability in multiple products A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. | 7.5 |
| 2019-04-20 | CVE-2019-11358 | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. | 6.1 |
| 2018-08-02 | CVE-2018-8032 | Cross-site Scripting vulnerability in multiple products Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services. | 6.1 |