12.1.3.0

DATE	CVE	VULNERABILITY TITLE	RISK
2019-01-16	CVE-2019-2452	Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0/12.1.3.0/12.2.1.3 Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). network low complexity oracle	6.7
2019-01-16	CVE-2019-2418	Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0/12.1.3.0/12.2.1.3 Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). network high complexity oracle	6.5
2019-01-16	CVE-2019-2398	Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0/12.1.3.0/12.2.1.3 Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Deployment). network low complexity oracle	4.3
2018-10-17	CVE-2018-3213	Unspecified vulnerability in Oracle Weblogic Server Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Docker Images). network low complexity oracle	7.5
2018-05-11	CVE-2018-1258	Incorrect Authorization vulnerability in multiple products Spring Framework version 5.0.5 when used in combination with any versions of Spring Security contains an authorization bypass when using method security. network low complexity pivotal-software vmware oracle netapp redhat CWE-863	8.8
2018-01-18	CVE-2015-9251	Cross-site Scripting vulnerability in multiple products jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed. network low complexity jquery oracle CWE-79	6.1