Oracle Communications Design Studio 7.4.1.1.0

CPE Details

Oracle Communications Design Studio 7.4.1.1.0
oracle
communications_design_studio
7.4.1.1.0
2021-03-05
17h35 +00:00
2021-04-21
12h19 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:oracle:communications_design_studio:7.4.1.1.0:*:*:*:*:*:*:*

Informations

Vendor

oracle

Product

communications_design_studio

Version

7.4.1.1.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-29425 2021-04-13 04h50 +00:00 In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but not further above (thus "limited" path traversal), if the calling code would use the result to construct a path value.
4.8
Medium
CVE-2019-0227 2019-05-01 18h03 +00:00 A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subversion repository, legacy users are encouraged to build from source. The successor to Axis 1.x is Axis2, the latest version is 1.7.9 and is not vulnerable to this issue.
7.5
High
CVE-2018-8032 2018-08-02 13h00 +00:00 Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
6.1
Medium