Vulnerabilities > Oracle > Siebel UI Framework > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-01-15 CVE-2020-2560 Unspecified vulnerability in Oracle Siebel UI Framework
Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM (component: SWSE Server).
network
low complexity
oracle
4.7
2020-01-15 CVE-2020-2559 Unspecified vulnerability in Oracle Siebel UI Framework
Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM (component: UIF Open UI).
network
low complexity
oracle
5.3
2019-10-16 CVE-2019-2935 Unspecified vulnerability in Oracle Siebel UI Framework
Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM (component: EAI).
network
low complexity
oracle
5.3
2019-07-23 CVE-2019-2857 Unspecified vulnerability in Oracle Siebel UI Framework
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI).
network
low complexity
oracle
5.4
2019-04-20 CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. 6.1
2018-10-17 CVE-2018-3059 Unspecified vulnerability in Oracle Siebel UI Framework 18.7/18.8/18.9
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI).
network
low complexity
oracle
6.1
2018-08-02 CVE-2018-8032 Cross-site Scripting vulnerability in multiple products
Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
network
low complexity
apache oracle debian CWE-79
6.1
2018-07-18 CVE-2018-2959 Unspecified vulnerability in Oracle Siebel UI Framework 18.0
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI).
network
low complexity
oracle
4.3
2018-01-18 CVE-2015-9251 Cross-site Scripting vulnerability in multiple products
jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
network
low complexity
jquery oracle CWE-79
6.1
2017-10-19 CVE-2017-10315 Unspecified vulnerability in Oracle Siebel UI Framework 16.0/17.0
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI).
network
low complexity
oracle
6.1