Vulnerabilities > Oracle > Siebel UI Framework
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-04-17 | CVE-2017-5645 | Deserialization of Untrusted Data vulnerability in multiple products In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code. | 9.8 |
2017-03-15 | CVE-2016-7103 | Cross-site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function. | 6.1 |
2017-01-27 | CVE-2017-3330 | Unspecified vulnerability in Oracle Siebel UI Framework 16.1 Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: Open UI). | 7.6 |
2017-01-27 | CVE-2017-3325 | Unspecified vulnerability in Oracle Siebel UI Framework 16.1 Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: EAI). | 8.2 |
2017-01-27 | CVE-2017-3264 | Unspecified vulnerability in Oracle Siebel UI Framework 16.1 Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: Open UI). | 3.1 |
2016-07-21 | CVE-2016-5468 | Unspecified vulnerability in Oracle Siebel UI Framework Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality and integrity via vectors related to EAI, a different vulnerability than CVE-2016-5451. | 5.4 |
2016-07-21 | CVE-2016-5464 | Unspecified vulnerability in Oracle Siebel UI Framework Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect integrity via vectors related to SWSE Server, a different vulnerability than CVE-2016-5463. | 4.1 |
2016-07-21 | CVE-2016-5463 | Unspecified vulnerability in Oracle Siebel UI Framework Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect integrity via vectors related to SWSE Server, a different vulnerability than CVE-2016-5464. | 4.1 |
2016-07-21 | CVE-2016-5451 | Unspecified vulnerability in Oracle Siebel UI Framework Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality and integrity via vectors related to EAI, a different vulnerability than CVE-2016-5468. | 8.1 |
2016-07-21 | CVE-2016-5450 | Unspecified vulnerability in Oracle Siebel UI Framework Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect integrity via vectors related to UIF Open UI. | 4.7 |