Vulnerabilities > Oracle > Siebel UI Framework
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-01 | CVE-2019-0227 | Server-Side Request Forgery (SSRF) vulnerability in multiple products A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. | 7.5 |
| 2019-04-20 | CVE-2019-11358 | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. | 6.1 |
| 2019-01-02 | CVE-2018-14718 | Deserialization of Untrusted Data vulnerability in multiple products FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the slf4j-ext class from polymorphic deserialization. | 9.8 |
| 2018-10-17 | CVE-2018-3059 | Unspecified vulnerability in Oracle Siebel UI Framework 18.7/18.8/18.9 Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI). network oracle | 5.8 |
| 2018-08-02 | CVE-2018-8032 | Cross-site Scripting vulnerability in multiple products Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services. | 6.1 |
| 2018-07-18 | CVE-2018-2959 | Unspecified vulnerability in Oracle Siebel UI Framework 18.0 Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI). network oracle | 4.3 |
| 2018-01-18 | CVE-2015-9251 | Cross-site Scripting vulnerability in multiple products jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed. | 6.1 |
| 2017-10-19 | CVE-2017-10333 | Unspecified vulnerability in Oracle Siebel UI Framework 16.0/17.0 Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: EAI). | 6.5 |
| 2017-10-19 | CVE-2017-10315 | Unspecified vulnerability in Oracle Siebel UI Framework 16.0/17.0 Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI). network oracle | 5.8 |
| 2017-10-19 | CVE-2017-10302 | Unspecified vulnerability in Oracle Siebel UI Framework 16.0/17.0 Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI). network oracle | 5.8 |