Known Vulnerabilities for Identity Manager Connector by Oracle

Listed below are 9 of the newest known vulnerabilities associated with "Identity Manager Connector" by "Oracle".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-23307 CVE-2020-9493 identified a deserialization issue that was present in Apache Chainsaw. Prior to Chainsaw V2.0 Chainsaw was a c... 8.8 - HIGH 2022-01-18 2023-02-24
CVE-2022-23305 By design, the JDBCAppender in Log4j 1.2.x accepts an SQL statement as a configuration parameter where the values to be inser... 9.8 - CRITICAL 2022-01-18 2023-02-24
CVE-2022-23302 JMSSink in all versions of Log4j 1.x is vulnerable to deserialization of untrusted data when the attacker has write access to... 8.8 - HIGH 2022-01-18 2023-02-24
CVE-2020-24750 FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related t... 8.1 - HIGH 2020-09-17 2023-09-13
CVE-2020-24616 FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related t... 8.1 - HIGH 2020-08-25 2023-09-13
CVE-2019-0222 In Apache ActiveMQ 5.0.0 - 5.15.8, unmarshalling corrupt MQTT frame can lead to broker Out of Memory exception making it unre... 7.5 - HIGH 2019-03-28 2021-07-21
CVE-2018-15756 Spring Framework, version 5.1, versions 5.0.x prior to 5.0.10, versions 4.3.x prior to 4.3.20, and older unsupported versions... 7.5 - HIGH 2018-10-18 2022-05-13
CVE-2017-10270 Vulnerability in the Oracle Identity Manager Connector component of Oracle Fusion Middleware (subcomponent: Microsoft Active ... 8.2 - HIGH 2017-10-19 2019-10-03
CVE-2017-5645 In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from... 9.8 - CRITICAL 2017-04-17 2022-04-04

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationOracleIdentity Manager Connector9.1.1.5.0AllAllAll

Popular searches for Identity Manager Connector

Oracle Identity Manager Connector Downloads

www.oracle.com/technetwork/middleware/id-mgmt/downloads/connectors-101674.html

Oracle Identity Manager Connector Downloads Connector W U S Server for .net. This version is backward compatible with earlier versions of the Connector \ Z X server and therefore can be used for all ICF Connectors. Please apply AD Password Sync connector @ > < patch 30856343 9.1.1.5.17 after downloading from MOS My Oracle c a Support . If multiple connectors belonging to a single family need to be deployed on the same Oracle Identity Manager ? = ; application, they should all have the same version number.

Zip (file format) Electrical connector Server (computing) Java EE Connector Architecture Software versioning Backward compatibility Application software Download Oracle Corporation Patch (computing) Password Oracle Database Oracle Identity Manager MOSFET Pin header User (computing) Bluetooth Cloud computing Software Search algorithm

Oracle Identity Manager 11g Assets

www.oracle.com/technetwork/middleware/id-mgmt/overview/oim-11g-assets-504842.html

Oracle Identity Manager 11g Assets Oracle Identity Manager Customization samples

www.oracle.com/technetwork/middleware/id-mgmt/learnmore/oid-demos-182820.html Oracle Database Asset Software deployment Personalization Service-oriented architecture Oracle Identity Manager Use case User (computing) Software Custom software Application software Electrical connector Search algorithm User interface Workflow Mass customization Oracle Corporation Hypertext Transfer Protocol Plug-in (computing) Process (computing)

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].
© CVE.report 2023 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report