CPE-18AF2A06-BBC6-443B-976C-67A72F327D3B Detail

CPE Details

Oracle Banking Supply Chain Finance 14.5

Vendor

oracle

Product

banking_supply_chain_finance

Version

14.5

Created

2021-12-02
13h29 +00:00

Modified

2021-12-02
21h36 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:oracle:banking_supply_chain_finance:14.5:::::::*

Informations

Vendor

oracle

Product

banking_supply_chain_finance

Version

14.5

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2022-22963	2022-04-01 00h00 +00:00	In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.	9.8	Critical
CVE-2020-36179	2021-01-06 21h30 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS.	8.8	High
CVE-2020-36180	2021-01-06 21h30 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS.	8.8	High
CVE-2020-36182	2021-01-06 21h30 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS.	8.8	High
CVE-2020-36183	2021-01-06 21h30 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool.	8.1	High
CVE-2020-36184	2021-01-06 21h30 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource.	8.8	High
CVE-2020-36185	2021-01-06 21h29 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource.	8.1	High
CVE-2020-36186	2021-01-06 21h29 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource.	8.1	High
CVE-2020-36187	2021-01-06 21h29 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource.	8.1	High
CVE-2020-36188	2021-01-06 21h29 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource.	8.1	High
CVE-2020-36181	2021-01-06 21h29 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS.	8.8	High
CVE-2020-35728	2020-12-27 03h32 +00:00	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool (aka embedded Xalan in org.glassfish.web/javax.servlet.jsp.jstl).	8.1	High
CVE-2020-26217	2020-11-16 20h00 +00:00	XStream before version 1.4.14 is vulnerable to Remote Code Execution.The vulnerability may allow a remote attacker to run arbitrary shell commands only by manipulating the processed input stream. Only users who rely on blocklists are affected. Anyone using XStream's Security Framework allowlist is not affected. The linked advisory provides code workarounds for users who cannot upgrade. The issue is fixed in version 1.4.14.	8.8	High
CVE-2020-24616	2020-08-25 15h04 +00:00	FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource (aka Anteros-DBCP).	8.1	High
CVE-2019-0228	2019-04-17 12h07 +00:00	Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF.	9.8	Critical

Oracle Banking Supply Chain Finance 14.5

CPE Details

CPE Name: cpe:2.3:a:oracle:banking_supply_chain_finance:14.5:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:oracle:banking_supply_chain_finance:14.5:::::::*