Vulnerabilities > Oracle > Supply Chain Products Suite > 6.1.2.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-07-09 | CVE-2015-1793 | 7PK - Security Features vulnerability in multiple products The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate. | 6.5 |
2013-04-17 | CVE-2013-2441 | Remote Security vulnerability in Oracle Supply Chain products Suite 6.1.1.0/6.1.2.0/6.1.2.2 Unspecified vulnerability in the Agile EDM component in Oracle Supply Chain Products Suite 6.1.1.0, 6.1.2.0, and 6.1.2.2 allows remote authenticated users to affect integrity via unknown vectors related to Java Client. | 4.0 |
2013-04-17 | CVE-2013-0410 | Remote Security vulnerability in Oracle Supply Chain products Suite 6.1.1.0/6.1.2.0/6.1.2.2 Unspecified vulnerability in the Agile EDM component in Oracle Supply Chain Products Suite 6.1.1.0, 6.1.2.0, and 6.1.2.2 allows remote attackers to affect confidentiality via unknown vectors related to Base Component - Common Objects. network oracle | 4.3 |