Vulnerabilities > Oracle > Tuxedo > 12.1.3

DATE CVE VULNERABILITY TITLE RISK
2019-05-01 CVE-2019-0227 Server-Side Request Forgery (SSRF) vulnerability in multiple products
A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006.
high complexity
apache oracle CWE-918
7.5
7.5
2018-08-02 CVE-2018-8032 Cross-site Scripting vulnerability in multiple products
Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
network
low complexity
apache oracle debian CWE-79
6.1
6.1
2018-07-18 CVE-2018-3007 Unspecified vulnerability in Oracle Tuxedo 12.1.1/12.1.3/12.2.2
Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core).
network
low complexity
oracle
8.6
8.6
2017-11-14 CVE-2017-10278 Unspecified vulnerability in Oracle Tuxedo
Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Security).
network
high complexity
oracle
7.0
7.0
2017-11-14 CVE-2017-10272 Unspecified vulnerability in Oracle Tuxedo
Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core).
network
low complexity
oracle
critical
 9.9
9.9
2017-11-14 CVE-2017-10269 Unspecified vulnerability in Oracle Tuxedo
Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core).
network
low complexity
oracle
critical
 10.0
10
2017-11-14 CVE-2017-10267 Information Exposure vulnerability in Oracle Tuxedo
Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core).
network
low complexity
oracle CWE-200
7.5
7.5
2017-11-14 CVE-2017-10266 Information Exposure vulnerability in Oracle Tuxedo
Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core).
network
low complexity
oracle CWE-200
5.3
5.3