VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Oracle
>
Primavera Unifier
> 17.12
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-05-16
CVE-2022-25169
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files.
local
low complexity
apache
oracle
CWE-770
5.5
5.5
2022-05-16
CVE-2022-30126
In Apache Tika, a regular expression in our StandardsText class, used by the StandardsExtractingContentHandler could lead to a denial of service caused by backtracking on a specially crafted file.
local
low complexity
apache
oracle
5.5
5.5
2022-03-11
CVE-2020-36518
Out-of-bounds Write vulnerability in multiple products
jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.
network
low complexity
fasterxml
oracle
debian
netapp
CWE-787
7.5
7.5
2021-12-17
CVE-2021-23450
All versions of package dojo are vulnerable to Prototype Pollution via the setObject function.
network
low complexity
linuxfoundation
oracle
debian
critical
9.8
9.8
2021-10-26
CVE-2021-41182
jQuery-UI is the official jQuery user interface library.
network
low complexity
jqueryui
fedoraproject
netapp
debian
drupal
oracle
tenable
6.1
6.1
2021-10-26
CVE-2021-41184
jQuery-UI is the official jQuery user interface library.
network
low complexity
jqueryui
fedoraproject
netapp
drupal
tenable
oracle
6.1
6.1
2021-10-18
CVE-2021-42575
The OWASP Java HTML Sanitizer before 20211018.1 does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.
network
low complexity
owasp
oracle
critical
9.8
9.8
2021-07-14
CVE-2021-36373
When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs.
local
low complexity
apache
oracle
5.5
5.5
2021-07-14
CVE-2021-36374
When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs.
local
low complexity
apache
oracle
5.5
5.5
2021-07-13
CVE-2021-35515
Infinite Loop vulnerability in multiple products
When reading a specially crafted 7Z archive, the construction of the list of codecs that decompress an entry can result in an infinite loop.
network
low complexity
apache
netapp
oracle
CWE-835
7.5
7.5
«
1
(current)
2
3
4
5
...
8
9
»
Next