Vulnerabilities > Oracle > Retail Customer Management AND Segmentation Foundation > 16.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-15 | CVE-2020-14708 | Unspecified vulnerability in Oracle Retail Customer Management and Segmentation Foundation 16.0/17.0/18.0 Vulnerability in the Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Segment). | 4.0 |
| 2020-05-01 | CVE-2020-10683 | XXE vulnerability in multiple products dom4j before 2.0.3 and 2.1.x before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. | 9.8 |
| 2020-04-27 | CVE-2020-9488 | Improper Certificate Validation vulnerability in multiple products Improper validation of certificate with host mismatch in Apache Log4j SMTP appender. | 3.7 |
| 2020-01-15 | CVE-2020-2650 | Unspecified vulnerability in Oracle Retail Customer Management and Segmentation Foundation 16.0 Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Promotions). | 6.4 |
| 2020-01-15 | CVE-2020-2649 | Unspecified vulnerability in Oracle Retail Customer Management and Segmentation Foundation 16.0 Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Internal Operations). | 2.1 |
| 2020-01-15 | CVE-2020-2648 | Unspecified vulnerability in Oracle Retail Customer Management and Segmentation Foundation 16.0 Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Internal Operations). | 4.6 |
| 2019-11-08 | CVE-2019-10219 | Cross-site Scripting vulnerability in multiple products A vulnerability was found in Hibernate-Validator. | 6.1 |
| 2019-07-23 | CVE-2018-3316 | Unspecified vulnerability in Oracle Retail Customer Management and Segmentation Foundation 16.0/17.0 Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation component of Oracle Retail Applications (subcomponent: Segment). | 6.5 |
| 2019-07-23 | CVE-2018-3315 | Unspecified vulnerability in Oracle Retail Customer Management and Segmentation Foundation 16.0/17.0 Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation component of Oracle Retail Applications (subcomponent: Customer). network oracle | 4.9 |
| 2019-01-18 | CVE-2019-3772 | XXE vulnerability in multiple products Spring Integration (spring-integration-xml and spring-integration-ws modules), versions 4.3.18, 5.0.10, 5.1.1, and older unsupported versions, were susceptible to XML External Entity Injection (XXE) when receiving XML data from untrusted sources. | 7.5 |