Vulnerabilities > Oracle
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-13 | CVE-2016-5690 | NULL Pointer Dereference vulnerability in multiple products The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact via vectors involving the for statement in computing the pixel scaling table. | 9.8 |
| 2016-12-13 | CVE-2016-5689 | NULL Pointer Dereference vulnerability in multiple products The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of NULL pointer checks. | 9.8 |
| 2016-12-13 | CVE-2016-5688 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelIndex functions. | 8.1 |
| 2016-12-13 | CVE-2016-5687 | Out-of-bounds Read vulnerability in multiple products The VerticalFilter function in the DDS coder in ImageMagick before 6.9.4-3 and 7.x before 7.0.1-4 allows remote attackers to have unspecified impact via a crafted DDS file, which triggers an out-of-bounds read. | 9.8 |
| 2016-12-09 | CVE-2015-8786 | Resource Management Errors vulnerability in multiple products The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service (resource consumption) via the (1) lengths_age or (2) lengths_incr parameter. | 6.5 |
| 2016-10-25 | CVE-2016-8296 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to LDAP. | 7.6 |
| 2016-10-25 | CVE-2016-8295 | Information Exposure vulnerability in Oracle Peoplesoft Enterprise Human Capital Management Time and Labor 9.2 Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality via unknown vectors. | 4.3 |
| 2016-10-25 | CVE-2016-8294 | Information Exposure vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality via unknown vectors. | 4.3 |
| 2016-10-25 | CVE-2016-8293 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors related to Integration Broker, a different vulnerability than CVE-2016-5529 and CVE-2016-5530. | 8.2 |
| 2016-10-25 | CVE-2016-8292 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Human Capital Management Talent Acquisition Manager 9.2 Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Talent Acquisition Manager. | 4.2 |