漏洞标题
N/A
漏洞描述信息
在Oracle Oracle Enterprise Manager Grid Control 12.1.4、12.2.2和12.3.2中的企业管理器运营中心组件(Enterprise Manager Ops Center)中存在未指定漏洞;在Oracle Health Sciences Applications 1.2.8.3、2.0.2.3和3.0.1.0中的Oracle Health Sciences Information Manager组件;在Oracle Health Sciences Applications 2.0.12、3.0.0和4.0.1中的Oracle Healthcare Master Person Index组件;在Oracle Insurance Applications 12.5之前的Oracle Documaker组件;在Oracle Insurance Applications 12.5之前的Oracle Insurance Calculation Engine组件;在Oracle Insurance Applications 9.7.1、10.1.2和10.2.2中的Oracle Insurance Policy Administration J2EE和Oracle Insurance Rules Palette组件;在Oracle Insurance Applications 9.6.1、9.7.1、10.0.1、10.1.2、10.2.0和10.2.2中的Oracle Insurance Policy Administration jsp和Oracle Insurance Rules Palette组件;在Oracle Retail Applications 15.0中的Oracle Retail Integration Bus组件;在Oracle Retail Applications 5.1、5.2和15.0中的Oracle Retail Order Broker组件;在Oracle Primavera Products Suite 14.2中的 Primavera Contract Management组件;在Oracle Primavera P6 Enterprise Project Portfolio Management组件在Oracle Primavera Products Suite 8.2、8.3、8.4、15.1、15.2和16.1中;在Oracle Financial Services Analytical Applications Infrastructure组件在Oracle Financial Services Applications 8.0.0、8.0.1、8.0.2和8.0.3中;在Oracle Commerce Guided Search / Oracle Commerce Experience Manager组件在Oracle Commerce 3.1.1、3.1.2、11.0、11.1和11.2中;在Oracle Agile PLM组件在Oracle Supply Chain Products Suite 9.3.4和9.3.5中;在Oracle Communications BRM - Elastic Charging Engine 11.2.0.0.0和11.3.0.0.0中;在Oracle Enterprise Repository Enterprise Repository 12.1.3.0.0中;在Oracle Financial Services Behavior Detection Platform 8.0.1和8.0.2中;在Oracle Hyperion Essbase 12.2.1.1中;在Oracle Tuxedo System and Applications Monitor (TSAM) 11.1.1.2.0、11.1.1.2.1、11.1.1.2.1、12.1.1.1.0、12.1.3.0.0和12.2.2.0.0中;在Oracle Communications Performance Intelligence Center (PIC) Software Prior to 10.2.1中;在Oracle Siebel CRM中Oracle Knowledge组件(subcomponent: AnswerFlow (Spring Framework))版本8.5.1.0 - 8.5.1.7和8.6.0中;在Oracle Communications WebRTC Session Controller组件在Oracle Communications Applications (subcomponent: Security (Spring)) 7.0、7.1和7.2中;在Oracle Endeca Information Discovery Integrator 3.2中;在Oracle Retail Applications 16.0.1中的Converged Commerce组件;在Oracle Retail Applications 16.0.1中的Oracle Retail Invoice Matching组件;在Oracle Identity Manager 11.1.2.3.0中;在Oracle Enterprise Manager for MySQL Database 12.1.0.4中;在Oracle Retail Invoice Matching 12.0、13.0、13.1、13.2、14.0和14.1中;在Oracle Communications Performance Intelligence Center (PIC) Software Prior to 10.2.1中;在Oracle Communications Performance Intelligence Center (PIC) Software Prior to 10.2.1中;在Oracle Hyperion Essbase 12.2.1.1中;在Oracle Tuxedo System and Applications Monitor (TSAM) 11.1.1.2.0、11.1.1.2.1、11.1.1.2.1、12.1.1.1.0、12.1.3.0.0和12.2.2.0.0中;在Oracle Communications WebRTC Session Controller组件在Oracle Communications Applications (subcomponent: Security (Spring)) 7.0、7.1和7.2中;在OracleCommerce Guided Search / Oracle Commerce Experience Manager组件在OracleCommerce 3.1.1、3.1.2、11.0、11.1和11.2中;在OracleCommerce 15.0中的Oracle Retail Integration Bus组件;在OracleCommerce 5.1、5.2和15.0中的Oracle Retail Order Broker组件;在Oracle Primavera Products Suite 14.2中的Primavera Contract Management组件;在Oracle Primavera P6 Enterprise Project Portfolio Management组件在Oracle Primavera Products Suite 8.2、
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2; the Oracle Health Sciences Information Manager component in Oracle Health Sciences Applications 1.2.8.3, 2.0.2.3, and 3.0.1.0; the Oracle Healthcare Master Person Index component in Oracle Health Sciences Applications 2.0.12, 3.0.0, and 4.0.1; the Oracle Documaker component in Oracle Insurance Applications before 12.5; the Oracle Insurance Calculation Engine component in Oracle Insurance Applications 9.7.1, 10.1.2, and 10.2.2; the Oracle Insurance Policy Administration J2EE and Oracle Insurance Rules Palette components in Oracle Insurance Applications 9.6.1, 9.7.1, 10.0.1, 10.1.2, 10.2.0, and 10.2.2; the Oracle Retail Integration Bus component in Oracle Retail Applications 15.0; the Oracle Retail Order Broker component in Oracle Retail Applications 5.1, 5.2, and 15.0; the Primavera Contract Management component in Oracle Primavera Products Suite 14.2; the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.2, 8.3, 8.4, 15.1, 15.2, and 16.1; the Oracle Financial Services Analytical Applications Infrastructure component in Oracle Financial Services Applications 8.0.0, 8.0.1, 8.0.2, and 8.0.3; the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce 3.1.1, 3.1.2, 11.0, 11.1, and 11.2; the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5; the Oracle Communications BRM - Elastic Charging Engine 11.2.0.0.0 and 11.3.0.0.0; the Oracle Enterprise Repository Enterprise Repository 12.1.3.0.0; the Oracle Financial Services Behavior Detection Platform 8.0.1 and 8.0.2; the Oracle Hyperion Essbase 12.2.1.1; the Oracle Tuxedo System and Applications Monitor (TSAM) 11.1.1.2.0, 11.1.1.2.1, 11.1.1.2.1, 12.1.1.1.0, 12.1.3.0.0, and 12.2.2.0.0; the Oracle Communications WebRTC Session Controller component of Oracle Communications Applications (subcomponent: Security (Spring)) 7.0, 7.1 and 7.2; the Oracle Endeca Information Discovery Integrator 3.2; the Converged Commerce component of Oracle Retail Applications 16.0.1; the Oracle Identity Manager 11.1.2.3.0; Oracle Enterprise Manager for MySQL Database 12.1.0.4; Oracle Retail Invoice Matching 12.0, 13.0, 13.1, 13.2, 14.0, and 14.1; Oracle Communications Performance Intelligence Center (PIC) Software Prior to 10.2.1 and the Oracle Knowledge component of Oracle Siebel CRM (subcomponent: AnswerFlow (Spring Framework)) version 8.5.1.0 - 8.5.1.7 and 8.6.0 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Oracle Enterprise Manager Grid Control Enterprise Manager Ops Center组件安全漏洞
漏洞描述信息
Oracle Enterprise Manager Grid Control是美国甲骨文(Oracle)公司的一套系统管理软件。该软件为Oracle IT架构提供中心化监视、生命周期管理等功能。Enterprise Manager Ops Center是其中的一个企业数据中心监控管理组件。 Oracle Enterprise Manager Grid Control 12.1.4、12.2.2及12.3.2版本中的Enterprise Manager Ops Center组件中的Framework子组件存
CVSS信息
N/A
漏洞类别
其他