Vulnerabilities > Oracle > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-01-21 | CVE-2016-0404 | Remote Security vulnerability in Oracle Fusion Middleware 11.1.2.2 Unspecified vulnerability in the Oracle Identity Federation component in Oracle Fusion Middleware 11.1.2.2 allows remote attackers to affect integrity via vectors related to Admin. network oracle | 4.3 |
| 2016-01-21 | CVE-2016-0402 | Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect integrity via unknown vectors related to Networking. | 5.0 |
| 2016-01-21 | CVE-2016-0401 | Remote Security vulnerability in Oracle Fusion Middleware 11.1.1.7.0/11.1.1.9 Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote attackers to affect integrity via unknown vectors related to Scheduler, a different vulnerability than CVE-2016-0429. network oracle | 4.3 |
| 2016-01-21 | CVE-2015-4925 | Remote Security vulnerability in Oracle Database Server 11.2.0.4 Unspecified vulnerability in the Workspace Manager component in Oracle Database Server 11.2.0.4 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | 6.5 |
| 2016-01-21 | CVE-2015-4923 | Remote Security vulnerability in Oracle Database Server 11.2.0.4/12.1.0.1/12.1.0.2 Unspecified vulnerability in the XML Developer's Kit for C component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors. | 4.0 |
| 2016-01-21 | CVE-2015-4921 | Remote Security vulnerability in Oracle Database Server 11.2.0.4/12.1.0.1/12.1.0.2 Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect integrity via unknown vectors. | 4.0 |
| 2016-01-21 | CVE-2015-4919 | Remote Security vulnerability in Oracle JD Edwards products 9.1/9.2 Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Products 9.1 and 9.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Monitoring and Diagnostics SEC. network oracle | 6.8 |
| 2016-01-21 | CVE-2015-4885 | Remote Security vulnerability in Oracle Enterprise Manager Grid Control 12.1.0.4 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 12.1.0.4 allows remote attackers to affect confidentiality via vectors related to Agent Next Gen. network oracle | 4.3 |
| 2016-01-20 | CVE-2015-5295 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The template-validate command in OpenStack Orchestration API (Heat) before 2015.1.3 (kilo) and 5.0.x before 5.0.1 (liberty) allows remote authenticated users to cause a denial of service (memory consumption) or determine the existence of local files via the resource type in a template, as demonstrated by file:///dev/zero. | 5.4 |
| 2016-01-14 | CVE-2016-0777 | Information Exposure vulnerability in multiple products The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key. | 6.5 |