Known Vulnerabilities for Communications Webrtc Session Controller by Oracle
Listed below are 10 of the newest known vulnerabilities associated with "Communications Webrtc Session Controller" by "Oracle".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-11022 | In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing... | 6.1 - MEDIUM | 2020-04-29 | 2023-11-07 |
| CVE-2019-11358 | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of ... | 6.1 - MEDIUM | 2019-04-20 | 2023-11-07 |
| CVE-2019-10219 | A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consi... | 6.1 - MEDIUM | 2019-11-08 | 2023-11-07 |
| CVE-2018-1000301 | curl version curl 7.20.0 to and including curl 7.59.0 contains a CWE-126: Buffer Over-read vulnerability in denial of service... | 9.1 - CRITICAL | 2018-05-24 | 2019-10-03 |
| CVE-2018-1000180 | Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier have a flaw in the Low-level interface to RSA key pair g... | 7.5 - HIGH | 2018-06-05 | 2023-11-07 |
| CVE-2018-1000122 | A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker t... | 9.1 - CRITICAL | 2018-03-14 | 2019-10-03 |
| CVE-2018-1000121 | A NULL pointer dereference exists in curl 7.21.0 to and including curl 7.58.0 in the LDAP code that allows an attacker to cau... | 7.5 - HIGH | 2018-03-14 | 2019-07-23 |
| CVE-2018-1000120 | A buffer overflow exists in curl 7.12.3 to and including curl 7.58.0 in the FTP URL handling that allows an attacker to cause... | 9.8 - CRITICAL | 2018-03-14 | 2019-06-18 |
| CVE-2018-8013 | In Apache Batik 1.x before 1.10, when deserializing subclass of `AbstractDocument`, the class takes a string from the inputSt... | 9.8 - CRITICAL | 2018-05-24 | 2024-01-07 |
| CVE-2018-3246 | Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). Support... | 7.5 - HIGH | 2018-10-17 | 2019-10-03 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Oracle | Communications Webrtc Session Controller | 7.2.1 | All | All | All |
| Application | Oracle | Communications Webrtc Session Controller | 7.2.0.1.2 | All | All | All |
| Application | Oracle | Communications Webrtc Session Controller | 7.2.0.1.1 | All | All | All |
| Application | Oracle | Communications Webrtc Session Controller | 7.2.0.1 | All | All | All |
| Application | Oracle | Communications Webrtc Session Controller | 7.2.0.0 | All | All | All |
| Application | Oracle | Communications Webrtc Session Controller | 7.2 | All | All | All |
| Application | Oracle | Communications Webrtc Session Controller | 7.1 | All | All | All |
| Application | Oracle | Communications Webrtc Session Controller | 7.0 | All | All | All |