Oracle Communications Policy Management 9.9

CPE Details

Oracle Communications Policy Management 9.9
oracle
communications_policy_management
9.9
2019-12-06
17h35 +00:00
2019-12-06
17h35 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:oracle:communications_policy_management:9.9:*:*:*:*:*:*:*

Informations

Vendor

oracle

Product

communications_policy_management

Version

9.9

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-11776 2018-08-22 13h00 +00:00 Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn't have value and action set and in same time, its upper package have no or wildcard namespace.
8.1
High
CVE-2015-2808 2015-03-31 22h00 +00:00 The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue.
5