Known Vulnerabilities for Financial Services Data Integration Hub by Oracle

Listed below are 5 of the newest known vulnerabilities associated with "Financial Services Data Integration Hub" by "Oracle".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2020-17530 json	Forced OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution. Affected softw...	9.8 - CRITICAL	2020-12-11	2022-06-03
CVE-2019-11358 json	jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of ...	6.1 - MEDIUM	2019-04-20	2023-11-07
CVE-2019-0233 json	An access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when performing a file upload.	7.5 - HIGH	2020-09-14	2022-04-18
CVE-2019-0230 json	Apache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to ...	9.8 - CRITICAL	2020-09-14	2023-11-07
CVE-2015-9251 json	jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without...	6.1 - MEDIUM	2018-01-18	2023-11-07

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version
Application	Oracle	Financial Services Data Integration Hub	8.1.0
Application	Oracle	Financial Services Data Integration Hub	8.0.7
Application	Oracle	Financial Services Data Integration Hub	8.0.6
Application	Oracle	Financial Services Data Integration Hub	8.0.5
Application	Oracle	Financial Services Data Integration Hub	8.0.3