The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Oracle WebLogic Server

Apache OpenJPA: code execution via BrokerFactory
An attacker can use a vulnerability via BrokerFactory of Apache OpenJPA, in order to run code...
1671636, cpuapr2018, CVE-2013-1768, FEDORA-2013-12948, FEDORA-2013-12960, FEDORA-2013-12967, ibm10719109, MDVSA-2013:246, RHSA-2013:1185-01, swg21639553, swg21640799, swg21644047, swg24034966, swg27007951, VIGILANCE-VUL-25898
OpenSSL: information disclosure via RSA Constant Time Key Generation
An attacker can bypass access restrictions to data via RSA Constant Time Key Generation of OpenSSL, in order to obtain sensitive information...
bulletinjul2018, CERTFR-2018-AVI-511, CERTFR-2018-AVI-607, cpuapr2019, cpuapr2020, cpujan2019, cpujul2019, cpuoct2018, CVE-2018-0737, DLA-1449-1, DSA-2020-030, DSA-4348-1, DSA-4355-1, FEDORA-2019-00c25b9379, ibm10729805, ibm10743283, ibm10880781, JSA10919, JSA10990, openSUSE-SU-2018:2695-1, openSUSE-SU-2018:2957-1, openSUSE-SU-2018:3015-1, openSUSE-SU-2019:0152-1, openSUSE-SU-2019:1432-1, PAN-SA-2018-0015, RHSA-2018:3221-01, SA44073-2019-03, SSA:2018-226-01, SUSE-SU-2018:2486-1, SUSE-SU-2018:2492-1, SUSE-SU-2018:2683-1, SUSE-SU-2018:2928-1, SUSE-SU-2018:2965-1, SUSE-SU-2018:3864-1, SUSE-SU-2018:3864-2, SUSE-SU-2019:0197-1, SUSE-SU-2019:0512-1, SUSE-SU-2019:1553-1, TNS-2018-14, TNS-2018-17, TSB17568, USN-3628-1, USN-3628-2, USN-3692-1, USN-3692-2, VIGILANCE-VUL-25884
Spring Framework: information disclosure via Multipart Content
An attacker can bypass access restrictions to data via Multipart Content of Spring Framework, in order to obtain sensitive information...
cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-1275, VIGILANCE-VUL-25828
Spring Framework: information disclosure via Multipart Content
An attacker can bypass access restrictions to data via Multipart Content of Spring Framework, in order to obtain sensitive information...
cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-1272, KB0085481, RHSA-2018:2669-01, VIGILANCE-VUL-25785
Spring Framework: directory traversal via Spring MVC
An attacker can traverse directories via Spring MVC of Spring Framework, in order to read a file outside the service root path...
cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-1271, KB0085481, RHSA-2018:2669-01, VIGILANCE-VUL-25784
Spring Framework: code execution via spring-messaging
An attacker can use a vulnerability via spring-messaging of Spring Framework, in order to run code...
cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-1270, VIGILANCE-VUL-25783
OpenSSL: denial of service via Recursive ASN.1
An attacker can generate a fatal error via Recursive ASN.1 of OpenSSL, in order to trigger a denial of service...
2015887, 524146, bulletinjan2019, CERTFR-2018-AVI-155, cpuapr2019, cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-0739, DLA-1330-1, DSA-2018-125, DSA-2020-030, DSA-4157-1, DSA-4158-1, FEDORA-2018-1b4f1158e2, FEDORA-2018-40dc8b8b16, FEDORA-2018-76afaf1961, FEDORA-2018-9490b422e7, ibm10715641, ibm10717211, ibm10717405, ibm10717409, ibm10719319, ibm10733605, ibm10738249, ibm10874728, JSA10990, K08044291, N1022561, openSUSE-SU-2018:0936-1, openSUSE-SU-2018:1057-1, openSUSE-SU-2018:2208-1, openSUSE-SU-2018:2238-1, openSUSE-SU-2018:2524-1, openSUSE-SU-2018:2695-1, PAN-SA-2018-0015, RHSA-2018:3090-01, RHSA-2018:3221-01, SA166, SB10243, SSA-181018, SUSE-SU-2018:0902-1, SUSE-SU-2018:0905-1, SUSE-SU-2018:0906-1, SUSE-SU-2018:0975-1, SUSE-SU-2018:2072-1, SUSE-SU-2018:2158-1, SUSE-SU-2018:2683-1, SUSE-SU-2020:0495-1, Synology-SA-18:51, USN-3611-1, USN-3611-2, VIGILANCE-VUL-25666
OpenSSL: privilege escalation via HP-UX PA-RISC CRYPTO_memcmp
An attacker can bypass restrictions via HP-UX PA-RISC CRYPTO_memcmp() of OpenSSL, in order to escalate his privileges...
CERTFR-2018-AVI-155, cpuapr2019, cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-0733, FEDORA-2018-40dc8b8b16, FEDORA-2018-76afaf1961, ibm10717405, ibm10717409, N1022561, VIGILANCE-VUL-25665
Simple Logging Facade for Java: code execution via EventData XML Deserialisation
An attacker can use a vulnerability via EventData XML Deserialisation of Simple Logging Facade for Java, in order to run code...
1548909, cpuoct2020, CVE-2018-8088, FEDORA-2018-a4353f97db, FEDORA-2018-a46b358764, openSUSE-SU-2018:1625-1, RHSA-2018:0582-01, RHSA-2018:0592-01, RHSA-2018:0627-01, RHSA-2018:0628-01, RHSA-2018:0629-01, RHSA-2018:0630-01, RHSA-2018:1247-01, RHSA-2018:1248-01, RHSA-2018:1249-01, RHSA-2018:1251-01, RHSA-2018:1447-01, RHSA-2018:1448-01, RHSA-2018:1449-01, RHSA-2018:1450-01, RHSA-2018:1451-01, RHSA-2018:1575-01, RHSA-2018:2419-01, RHSA-2018:2420-01, RHSA-2018:2669-01, RHSA-2018:2930-01, SUSE-SU-2018:1744-1, VIGILANCE-VUL-25650, ZOOKEEPER-2952
curl: out-of-bounds memory reading via RTSP RTP
An attacker can force a read at an invalid address via RTSP RTP of curl, in order to trigger a denial of service, or to obtain sensitive information...
bulletinapr2018, cpujan2019, cpujul2019, cpuoct2018, CVE-2018-1000122, DLA-1309-1, DSA-2019-114, DSA-2020-289, DSA-4136-1, FEDORA-2018-66c96e0024, FEDORA-2018-8877b4ccac, JSA10874, openSUSE-SU-2018:0794-1, RHSA-2018:3157-01, RHSA-2018:3558-01, RHSA-2020:0544-01, RHSA-2020:0594-01, SSA:2018-074-01, STORM-2019-002, SUSE-SU-2018:1323-1, USN-3598-1, USN-3598-2, VIGILANCE-VUL-25547
Our database contains other pages. You can request a free trial to read them.

Display information about Oracle WebLogic Server: