The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Oracle WebLogic Server

Apache AXIS: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Apache AXIS, in order to run JavaScript code in the context of the web site...
cpuapr2020, cpujan2020, cpujan2021, cpujul2020, CVE-2018-8032, FEDORA-2018-8a85ed2f10, openSUSE-SU-2018:3218-1, SUSE-SU-2018:3118-1, SUSE-SU-2018:3119-1, SUSE-SU-2018:3121-1, VIGILANCE-VUL-27069
Apache Struts: code execution via Namespace Special Configuration
An attacker can use a vulnerability via Namespace Special Configuration of Apache Struts, in order to run code...
525207, 526176, CERTFR-2018-ALE-010, CERTFR-2018-AVI-405, cisco-sa-20180823-apache-struts, cpujan2019, CVE-2018-11776, DSA-2018-196, S2-057, VIGILANCE-VUL-27058
Guava: denial of service via AtomicDoubleArray
An attacker can generate a fatal error via AtomicDoubleArray() of Guava, in order to trigger a denial of service...
6198380, cpujan2021, cpujul2020, CVE-2018-10237, ibm10795696, ibm10871804, RHSA-2018:2423-01, RHSA-2018:2424-01, RHSA-2018:2425-01, RHSA-2018:2740-01, RHSA-2018:2741-01, RHSA-2018:2742-01, RHSA-2018:2743-01, swg27048591, VIGILANCE-VUL-27021
Apache CXF: Man-in-the-Middle via com.sun.net.ssl
An attacker can act as a Man-in-the-Middle via com.sun.net.ssl on Apache CXF, in order to read or write data in the session...
cpuapr2020, cpujul2019, CVE-2018-8039, ibm10720065, ibm10734899, RHSA-2018:2276-01, RHSA-2018:2277-01, RHSA-2018:2423-01, RHSA-2018:2424-01, RHSA-2018:2425-01, RHSA-2018:3817-01, VIGILANCE-VUL-26852
Oracle Fusion Middleware: vulnerabilities of July 2018
Several vulnerabilities were announced in Oracle products...
cpujul2018, CVE-2018-2893, CVE-2018-2894, CVE-2018-2900, CVE-2018-2925, CVE-2018-2933, CVE-2018-2935, CVE-2018-2943, CVE-2018-2958, CVE-2018-2987, CVE-2018-2998, CVE-2018-3007, CVE-2018-3100, CVE-2018-3101, CVE-2018-3105, CVE-2018-3108, CVE-2018-3109, VIGILANCE-VUL-26765
Bouncy Castle Java Cryptography Extension: vulnerability via XMSS Private Keys Deserialization
A vulnerability via XMSS Private Keys Deserialization of Bouncy Castle Java Cryptography Extension was announced...
6356449, CERTFR-2019-AVI-325, cpuapr2019, cpuapr2020, cpuapr2021, cpujan2019, cpujul2019, CVE-2018-1000613, FEDORA-2018-e6894349c9, JSA10939, JSA11023, openSUSE-SU-2018:2131-1, openSUSE-SU-2018:2180-1, openSUSE-SU-2020:0607-1, VIGILANCE-VUL-26596
Spring Framework: information disclosure via Cross-Domain Requests
An attacker can bypass access restrictions to data via Cross-Domain Requests of Spring Framework, in order to obtain sensitive information...
cpuapr2019, cpujan2019, cpujul2019, cpujul2020, cpuoct2018, CVE-2018-11040, DLA-2635-1, VIGILANCE-VUL-26440
Spring Framework: information disclosure via Cross Site Tracing
An attacker can bypass access restrictions to data via Cross Site Tracing of Spring Framework, in order to obtain sensitive information...
cpuapr2019, cpujan2019, cpujul2019, cpujul2020, cpuoct2018, CVE-2018-11039, DLA-2635-1, KB0085481, VIGILANCE-VUL-26439
Libgcrypt: information disclosure via ECDSA Signatures Side-channel Attack
An attacker can bypass access restrictions to data via ECDSA Signatures Side-channel Attack of Libgcrypt, in order to obtain sensitive information...
bulletinjan2019, bulletinjul2018, cpuapr2019, CVE-2018-0495, DLA-1405-1, DSA-4231-1, FEDORA-2018-98ab6b4e56, openSUSE-SU-2018:2122-1, openSUSE-SU-2018:2178-1, openSUSE-SU-2018:4283-1, RHSA-2018:3221-01, RHSA-2019:2237-01, RHSA-2020:1267-01, RHSA-2020:1345-01, RHSA-2020:1461-01, SUSE-SU-2018:1993-1, SUSE-SU-2018:2089-1, SUSE-SU-2018:2452-2, SUSE-SU-2018:4235-1, SUSE-SU-2018:4236-1, USN-3689-1, USN-3689-2, USN-3692-1, USN-3692-2, USN-3850-1, USN-3850-2, VIGILANCE-VUL-26425
OpenSSL: denial of service via Large DH Parameter
An attacker can generate a fatal error via Large DH Parameter of OpenSSL, in order to trigger a denial of service...
bulletinjul2018, CERTFR-2018-AVI-511, CERTFR-2018-AVI-607, cpuapr2019, cpuapr2020, cpujan2019, cpujan2021, cpujul2019, cpuoct2018, CVE-2018-0732, DLA-1449-1, DSA-2019-197, DSA-2020-030, DSA-2020-062, DSA-4348-1, DSA-4355-1, FEDORA-2019-00c25b9379, ibm10719319, ibm10729805, ibm10738401, ibm10743283, ibm10874728, JSA10919, JSA10990, JSA11074, K21665601, openSUSE-SU-2018:1906-1, openSUSE-SU-2018:2117-1, openSUSE-SU-2018:2129-1, openSUSE-SU-2018:2667-1, openSUSE-SU-2018:2695-1, openSUSE-SU-2018:2816-1, openSUSE-SU-2018:2855-1, openSUSE-SU-2018:3013-1, openSUSE-SU-2018:3015-1, PAN-SA-2018-0015, RHSA-2018:3221-01, SA44073-2019-03, SSA:2018-226-01, SUSE-SU-2018:1887-1, SUSE-SU-2018:1968-1, SUSE-SU-2018:2036-1, SUSE-SU-2018:2041-1, SUSE-SU-2018:2207-1, SUSE-SU-2018:2647-1, SUSE-SU-2018:2683-1, SUSE-SU-2018:2812-1, SUSE-SU-2018:2956-1, SUSE-SU-2018:2965-1, SUSE-SU-2019:14246-1, SUSE-SU-2019:1553-1, SYMSA1462, TNS-2018-14, TNS-2018-17, TSB17568, USN-3692-1, USN-3692-2, VIGILANCE-VUL-26375
Our database contains other pages. You can request a free trial to read them.

Display information about Oracle WebLogic Server: