Vulnerabilities > Oracle > Siebel UI Framework

DATE CVE VULNERABILITY TITLE RISK
2017-04-17 CVE-2017-5645 Deserialization of Untrusted Data vulnerability in multiple products
In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.
network
low complexity
apache netapp redhat oracle CWE-502
critical
9.8
2017-03-15 CVE-2016-7103 Cross-site Scripting vulnerability in multiple products
Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.
6.1
2017-01-27 CVE-2017-3330 Unspecified vulnerability in Oracle Siebel UI Framework 16.1
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: Open UI).
network
low complexity
oracle
7.6
2017-01-27 CVE-2017-3325 Unspecified vulnerability in Oracle Siebel UI Framework 16.1
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: EAI).
network
low complexity
oracle
8.2
2017-01-27 CVE-2017-3264 Unspecified vulnerability in Oracle Siebel UI Framework 16.1
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: Open UI).
network
high complexity
oracle
3.1
2016-07-21 CVE-2016-5468 Unspecified vulnerability in Oracle Siebel UI Framework
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality and integrity via vectors related to EAI, a different vulnerability than CVE-2016-5451.
network
low complexity
oracle
5.4
2016-07-21 CVE-2016-5464 Unspecified vulnerability in Oracle Siebel UI Framework
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect integrity via vectors related to SWSE Server, a different vulnerability than CVE-2016-5463.
network
low complexity
oracle
4.1
2016-07-21 CVE-2016-5463 Unspecified vulnerability in Oracle Siebel UI Framework
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect integrity via vectors related to SWSE Server, a different vulnerability than CVE-2016-5464.
network
low complexity
oracle
4.1
2016-07-21 CVE-2016-5451 Unspecified vulnerability in Oracle Siebel UI Framework
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality and integrity via vectors related to EAI, a different vulnerability than CVE-2016-5468.
network
low complexity
oracle
8.1
2016-07-21 CVE-2016-5450 Unspecified vulnerability in Oracle Siebel UI Framework
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect integrity via vectors related to UIF Open UI.
network
low complexity
oracle
4.7