Known Vulnerabilities for Retail Integration Bus by Oracle

Listed below are 10 of the newest known vulnerabilities associated with "Retail Integration Bus" by "Oracle".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-23437 There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document paylo... 6.5 - MEDIUM 2022-01-24 2023-08-08
CVE-2022-22965 A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data bindin... 9.8 - CRITICAL 2022-04-01 2023-02-09
CVE-2021-40690 All versions of Apache Santuario - XML Security for Java prior to 2.2.3 and 2.1.7 are vulnerable to an issue where the "secur... 7.5 - HIGH 2021-09-19 2023-08-18
CVE-2021-36374 When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts... 5.5 - MEDIUM 2021-07-14 2023-02-28
CVE-2021-36373 When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally... 5.5 - MEDIUM 2021-07-14 2023-02-28
CVE-2021-29425 In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../f... 4.8 - MEDIUM 2021-04-13 2022-10-27
CVE-2021-22118 In Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux application is vulnerable to... 7.8 - HIGH 2021-05-27 2022-10-25
CVE-2021-2351 Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affected are... 8.3 - HIGH 2021-07-21 2023-08-08
CVE-2020-5397 Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Sp... 5.3 - MEDIUM 2020-01-17 2022-07-25
CVE-2020-1945 Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property jav... 6.3 - MEDIUM 2020-05-14 2022-04-04
Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationOracleRetail Integration Bus16.0.2AllAllAll
ApplicationOracleRetail Integration Bus16.0.1AllAllAll
ApplicationOracleRetail Integration Bus16.0AllAllAll
ApplicationOracleRetail Integration Bus15.0.2AllAllAll
ApplicationOracleRetail Integration Bus15.0.1AllAllAll
ApplicationOracleRetail Integration Bus15.0.0.1AllAllAll
ApplicationOracleRetail Integration Bus15.0AllAllAll
ApplicationOracleRetail Integration Bus14.1.3AllAllAll
ApplicationOracleRetail Integration Bus14.1.2AllAllAll
ApplicationOracleRetail Integration Bus14.1.1AllAllAll
ApplicationOracleRetail Integration Bus14.1.0AllAllAll
ApplicationOracleRetail Integration Bus14.1AllAllAll
ApplicationOracleRetail Integration Bus14.0.4AllAllAll
ApplicationOracleRetail Integration Bus14.0.3AllAllAll
ApplicationOracleRetail Integration Bus14.0.2AllAllAll
ApplicationOracleRetail Integration Bus14.0.1AllAllAll
ApplicationOracleRetail Integration Bus14.0.0AllAllAll
ApplicationOracleRetail Integration Bus14.0AllAllAll
ApplicationOracleRetail Integration Bus13.2AllAllAll
ApplicationOracleRetail Integration Bus13.1AllAllAll
Results limited to 20 most recent known configurations

Popular searches for Retail Integration Bus

Oracle Enterprise Service Bus - Wikipedia

en.wikipedia.org/wiki/Oracle_Enterprise_Service_Bus

Oracle Enterprise Service Bus - Wikipedia Oracle Enterprise Service Bus ! Oracle B @ >'s Services-Oriented Architecture suite of products, provides integration ` ^ \ of data and enterprise applications within an organisation and their connected enterprises.

Oracle Enterprise Service Bus Enterprise service bus Enterprise software Oracle Database Wikipedia Oracle Corporation Server (computing) Oracle SOA Suite Data integration Component-based software engineering Software architecture Bus (computing) Service-oriented architecture System integration Oracle Fusion Middleware Adapter pattern Retail Asynchronous I/O JDeveloper Solution stack

Map of CVE to Advisory/Alert

www.oracle.com/security-alerts/public-vuln-to-advisory-mapping.html

Map of CVE to Advisory/Alert Oracle y w recommends that customers always apply the latest Critical Patch Update for protection against known vulnerabilities. Oracle Retail ! Merchandising System 1816 Oracle Retail Sales Audit 1834 . Oracle 3 1 / Communications Session Report Manager 10770 Oracle 5 3 1 Endeca Information Discovery Integrator 10561 Oracle F D B Financial Services Analytical Applications Infrastructure 5680 Oracle , GoldenGate Application Adapters 5760 Oracle Healthcare Master Person Index 8575 Oracle , Insurance Policy Administration 5279 Oracle Insurance Rules Palette 5288 Oracle Retail Assortment Planning 1788 Oracle Retail Bulk Data Integration 12968 Oracle Retail Financial Integration 10722 Oracle Retail Integration Bus 1807 Oracle Retail Invoice Matching 1810 Oracle Retail Order Broker 11520 Oracle Retail Service Backbone 10867 Oracle WebLogic Server 5242 . Oracle Retail Financial Integration 10722 Oracle Retail Integration Bus 1807 Oracle Retail Service Backbone 10867 .

www.oracle.com/technetwork/topics/security/public-vuln-to-advisory-mapping-093627.html www.oracle.com/technetwork/topics/security/public-vuln-to-advisory-mapping-093627.html Oracle Corporation Retail Oracle Database Oracle Financial Services Software Common Vulnerabilities and Exposures System integration Insurance Bank Application software Patch (computing) Oracle WebLogic Server Telecommunication Siebel Systems Vulnerability (computing) Bus (computing) Communications satellite Data integration Backbone.js Invoice Software framework

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].
© CVE.report 2023 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report