The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Oracle Identity Manager

Eclipse Jetty: Cross Site Scripting via Generic ErrorHandler
An attacker can trigger a Cross Site Scripting via Generic ErrorHandler of Eclipse Jetty, in order to run JavaScript code in the context of the web site...
cpuapr2021, cpuoct2020, CVE-2019-17632, FEDORA-2020-4913d43d77, VIGILANCE-VUL-30979
XStream API: code execution via Deserialization
An attacker can use a vulnerability via Deserialization of XStream API, in order to run code...
1109925, CERTFR-2019-AVI-586, cpuapr2021, cpujan2021, cpuoct2020, CVE-2019-10173, RHSA-2020:0445-01, VIGILANCE-VUL-30921
FasterXML jackson-databind: information disclosure via net.sf.ehcache.hibernate.EhcacheJtaTransactionManagerLookup Polymorphic Typing
An attacker can bypass access restrictions to data via net.sf.ehcache.hibernate.EhcacheJtaTransactionManagerLookup Polymorphic Typing of FasterXML jackson-databind, in order to obtain sensitive information...
cpujul2020, cpuoct2020, CVE-2019-17267, DLA-2030-1, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, VIGILANCE-VUL-30870
Apache Commons Compress: infinite loop via File Name Encoding
An attacker can trigger an infinite loop via File Name Encoding of Apache Commons Compress, in order to trigger a denial of service...
1074156, 6198380, cpuapr2021, cpujan2021, cpuoct2020, CVE-2019-12402, FEDORA-2019-c96a8d12b0, VIGILANCE-VUL-30732
FasterXML jackson-databind: code execution via Polymorphic Typing
An attacker can use a vulnerability via Polymorphic Typing of FasterXML jackson-databind, in order to run code...
2498, cpuapr2020, cpujul2020, cpuoct2020, CVE-2019-17531, DLA-2030-1, NTAP-20191024-0005, RHSA-2019:4192-01, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, RHSA-2020:1644-01, VIGILANCE-VUL-30710
FasterXML jackson-databind: code execution via com.p6spy.engine.spy.P6DataSource Deserialization
An attacker can use a vulnerability via com.p6spy.engine.spy.P6DataSource Deserialization of jackson-databind, in order to run code...
cpuapr2020, cpujul2020, cpuoct2020, CVE-2019-16943, DLA-1943-1, DSA-4542-1, FEDORA-2019-b171554877, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, RHSA-2020:1644-01, VIGILANCE-VUL-30502
FasterXML jackson-databind: code execution via org.apache.commons.dbcp.datasources.SharedPoolDataSource Deserialization
An attacker can use a vulnerability via org.apache.commons.dbcp.datasources.SharedPoolDataSource Deserialization of jackson-databind, in order to run code...
cpuapr2020, cpujul2020, cpuoct2020, CVE-2019-16942, DLA-1943-1, DSA-4542-1, FEDORA-2019-b171554877, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, RHSA-2020:1644-01, VIGILANCE-VUL-30501
FasterXML jackson-databind: code execution via com.zaxxer.hikari.HikariDataSource Deserialization
An attacker can use a vulnerability via com.zaxxer.hikari.HikariDataSource Deserialization of jackson-databind, in order to run code...
cpuoct2020, CVE-2019-16335, DLA-1943-1, DSA-4542-1, FEDORA-2019-b171554877, NTAP-20191004-0002, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, RHSA-2020:1644-01, VIGILANCE-VUL-30500
FasterXML jackson-databind: code execution via com.zaxxer.hikari.HikariConfig Deserialization
An attacker can use a vulnerability via com.zaxxer.hikari.HikariConfig Deserialization of jackson-databind, in order to run code...
cpuoct2020, CVE-2019-14540, DLA-1943-1, DSA-4542-1, FEDORA-2019-b171554877, NTAP-20191004-0002, RHSA-2020:0159-01, RHSA-2020:0160-01, RHSA-2020:0161-01, RHSA-2020:0164-01, RHSA-2020:0445-01, RHSA-2020:1644-01, VIGILANCE-VUL-30499
curl: buffer overflow via TFTP Small Blocksize
An attacker can trigger a buffer overflow via TFTP Small Blocksize of curl, in order to trigger a denial of service, and possibly to run code...
6408848, 6411016, bulletinoct2020, cpuapr2020, cpuoct2020, CVE-2019-5482, DLA-1917-1, DSA-2019-168, DSA-2019-169, DSA-2019-201, DSA-4633-1, FEDORA-2019-9e6357d82f, FEDORA-2019-f2a520135e, openSUSE-SU-2019:2149-1, openSUSE-SU-2019:2169-1, RHSA-2020:1792-01, RHSA-2020:3916-01, RHSA-2021:0759-01, RHSA-2021:0877-01, RHSA-2021:1027-01, SSA:2019-254-01, SUSE-SU-2019:14172-1, SUSE-SU-2019:2339-2, SUSE-SU-2019:2373-1, SUSE-SU-2019:2381-1, USN-4129-1, USN-4129-2, VIGILANCE-VUL-30303
Our database contains other pages. You can request a free trial to read them.

Display information about Oracle Identity Manager: