The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Oracle Database

Apache Tomcat: information disclosure via Reverse Proxy Transfer-Encoding End-of-line HTTP Request Smuggling
An attacker can bypass access restrictions to data via Reverse Proxy Transfer-Encoding End-of-line HTTP Request Smuggling of Apache Tomcat, in order to obtain sensitive information...
bulletinapr2020, cpujul2020, CVE-2020-1935, DLA-2133-1, DLA-2209-1, DSA-4673-1, DSA-4680-1, HPESBUX04015, openSUSE-SU-2020:0345-1, SUSE-SU-2020:0598-1, SUSE-SU-2020:0631-1, SUSE-SU-2020:0632-1, SUSE-SU-2020:2611-1, USN-4448-1, VIGILANCE-VUL-31663
Apache Tomcat: information disclosure via Reverse Proxy Transfer-Encoding Header HTTP Request Smuggling
An attacker can bypass access restrictions to data via Reverse Proxy Transfer-Encoding Header HTTP Request Smuggling of Apache Tomcat, in order to obtain sensitive information...
bulletinapr2020, cpujul2020, CVE-2019-17569, DLA-2133-1, DSA-4673-1, DSA-4680-1, HPESBUX04015, openSUSE-SU-2020:0345-1, SUSE-SU-2020:0598-1, SUSE-SU-2020:0631-1, SUSE-SU-2020:0632-1, VIGILANCE-VUL-31662
Apache Tomcat: privilege escalation via FORM authentication session fixation
An attacker can bypass restrictions via FORM authentication session fixation of Apache Tomcat, in order to escalate his privileges...
CERTFR-2019-AVI-643, cpuapr2020, CVE-2019-17563, DLA-2077-1, DLA-2209-1, DSA-4596-1, DSA-4680-1, HPESBUX04015, K24551552, openSUSE-SU-2020:0038-1, SUSE-SU-2020:0029-1, SUSE-SU-2020:0226-1, SUSE-SU-2020:0632-1, USN-4251-1, VIGILANCE-VUL-31188
Apache Tomcat: privilege escalation via JMX Remote Lifecycle Listener
An attacker can bypass restrictions via JMX Remote Lifecycle Listener of Apache Tomcat, in order to escalate his privileges...
CERTFR-2019-AVI-643, cpuapr2020, CVE-2019-12418, DLA-2077-1, DLA-2155-1, DSA-4596-1, DSA-4680-1, HPESBUX04015, openSUSE-SU-2020:0038-1, SUSE-SU-2020:0029-1, SUSE-SU-2020:0226-1, SUSE-SU-2020:0632-1, USN-4251-1, VIGILANCE-VUL-31187
FasterXML jackson-databind: code execution via Polymorphic Typing
An attacker can use a vulnerability via Polymorphic Typing of FasterXML jackson-databind, in order to run code...
2498, cpuapr2020, cpujul2020, CVE-2019-17531, DLA-2030-1, NTAP-20191024-0005, RHSA-2019:4192-01, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, RHSA-2020:1644-01, VIGILANCE-VUL-30710
Oracle Database: vulnerabilities of October 2019
Several vulnerabilities were announced in Oracle products...
CERTFR-2019-AVI-506, cpuoct2019, CVE-2018-2875, CVE-2019-2734, CVE-2019-2909, CVE-2019-2913, CVE-2019-2939, CVE-2019-2940, CVE-2019-2954, CVE-2019-2955, CVE-2019-2956, VIGILANCE-VUL-30632
FasterXML jackson-databind: code execution via com.p6spy.engine.spy.P6DataSource Deserialization
An attacker can use a vulnerability via com.p6spy.engine.spy.P6DataSource Deserialization of jackson-databind, in order to run code...
cpuapr2020, cpujul2020, CVE-2019-16943, DLA-1943-1, DSA-4542-1, FEDORA-2019-b171554877, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, RHSA-2020:1644-01, VIGILANCE-VUL-30502
FasterXML jackson-databind: code execution via org.apache.commons.dbcp.datasources.SharedPoolDataSource Deserialization
An attacker can use a vulnerability via org.apache.commons.dbcp.datasources.SharedPoolDataSource Deserialization of jackson-databind, in order to run code...
cpuapr2020, cpujul2020, CVE-2019-16942, DLA-1943-1, DSA-4542-1, FEDORA-2019-b171554877, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, RHSA-2020:1644-01, VIGILANCE-VUL-30501
Apache Commons Beanutils: information disclosure via BeanIntrospector
An attacker can bypass access restrictions to data via BeanIntrospector of Apache Commons Beanutils, in order to obtain sensitive information...
1115085, 1119387, 3407751, 6198380, CERTFR-2020-AVI-179, cpujul2020, CVE-2019-10086, DLA-1896-1, DSA-2019-189, FEDORA-2019-79b5790566, FEDORA-2019-bcad44b5d6, openSUSE-SU-2019:2058-1, RHSA-2019:4317-01, RHSA-2020:0057-01, RHSA-2020:0194-01, RHSA-2020:0804-01, RHSA-2020:0805-01, RHSA-2020:0806-01, RHSA-2020:0811-01, RHSA-2020:0951-01, RHSA-2020:0952-01, SUSE-SU-2019:2244-1, SUSE-SU-2019:2245-1, VIGILANCE-VUL-30143
OpenJPEG: out-of-bounds memory reading via opj_j2k_update_image_data
An attacker can force a read at an invalid address via opj_j2k_update_image_data() of OpenJPEG, in order to trigger a denial of service, or to obtain sensitive information...
cpujul2020, CVE-2016-1923, SUSE-SU-2019:2152-1, VIGILANCE-VUL-30077
Our database contains other pages. You can request a free trial to read them.

Display information about Oracle Database: