Vulnerabilities > Oracle > Siebel Core Server Framework
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-17 | CVE-2020-24750 | Deserialization of Untrusted Data vulnerability in multiple products FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration. | 8.1 |
| 2020-04-07 | CVE-2020-11612 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. | 7.5 |
| 2019-07-23 | CVE-2019-2777 | Unspecified vulnerability in Oracle Siebel Core - Server Framework 19.0 Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Search). | 6.1 |
| 2019-05-23 | CVE-2019-0201 | Missing Authorization vulnerability in multiple products An issue is present in Apache ZooKeeper 1.0.0 to 3.4.13 and 3.5.0-alpha to 3.5.4-beta. | 5.9 |
| 2018-04-19 | CVE-2018-2789 | Unspecified vulnerability in Oracle Siebel Core-Server Framework 17.0 Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Services). | 5.0 |
| 2017-10-19 | CVE-2017-10162 | Unspecified vulnerability in Oracle Siebel Core-Server Framework 16.0/17.0 Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Services). | 5.4 |
| 2017-08-08 | CVE-2017-10049 | Unspecified vulnerability in Oracle Siebel Core-Server Framework 16.0/17.0 Vulnerability in the Siebel Core CRM component of Oracle Siebel CRM (subcomponent: Search). | 6.1 |
| 2016-07-21 | CVE-2016-5466 | Unspecified vulnerability in Oracle Siebel Core-Server Framework Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-3450 and CVE-2016-5460. | 3.7 |
| 2016-07-21 | CVE-2016-5462 | Unspecified vulnerability in Oracle Siebel Core-Server Framework Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote administrators to affect confidentiality via vectors related to Workspaces. | 2.7 |
| 2016-07-21 | CVE-2016-5461 | Unspecified vulnerability in Oracle Siebel Core-Server Framework Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via vectors related to Object Manager. | 6.5 |