VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Oracle
>
Utilities Framework
> 4.2.0.2.0
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-08-23
CVE-2021-39149
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream-project
fedoraproject
debian
netapp
oracle
8.5
8.5
2021-08-23
CVE-2021-39151
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream-project
fedoraproject
debian
netapp
oracle
8.5
8.5
2021-08-23
CVE-2021-39153
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream-project
fedoraproject
debian
netapp
oracle
8.5
8.5
2021-08-23
CVE-2021-39154
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream-project
fedoraproject
debian
netapp
oracle
8.5
8.5
2021-07-14
CVE-2021-36373
When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs.
local
low complexity
apache
oracle
5.5
5.5
2021-07-14
CVE-2021-36374
When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs.
local
low complexity
apache
oracle
5.5
5.5
2021-01-20
CVE-2020-14756
Unspecified vulnerability in Oracle Coherence and Utilities Framework
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core Components).
network
low complexity
oracle
critical
9.8
9.8
2020-05-14
CVE-2020-1945
Exposure of Resource to Wrong Sphere vulnerability in multiple products
Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information.
local
high complexity
apache
canonical
fedoraproject
opensuse
oracle
CWE-668
6.3
6.3
2020-05-01
CVE-2020-10683
XXE vulnerability in multiple products
dom4j before 2.0.3 and 2.1.x before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks.
network
low complexity
dom4j-project
oracle
opensuse
netapp
canonical
CWE-611
critical
9.8
9.8
2020-04-27
CVE-2020-9488
Improper Certificate Validation vulnerability in multiple products
Improper validation of certificate with host mismatch in Apache Log4j SMTP appender.
network
high complexity
apache
oracle
debian
qos
CWE-295
3.7
3.7
«
Previous
1
2
(current)
3
»
Next