Jd Edwards Enterpriseone Tools CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (150 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2017-15095	5 Debian, Fasterxml, Netapp and 2 more	31 Debian Linux, Jackson-databind, Oncommand Balance and 28 more	2024-11-21	9.8 Critical
A deserialization flaw was discovered in the jackson-databind in versions before 2.8.10 and 2.9.1, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.
CVE-2015-9251	3 Jquery, Oracle, Redhat	51 Jquery, Agile Product Lifecycle Management For Process, Banking Platform and 48 more	2024-11-21	N/A
jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2011-3524	1 Oracle	2 Jd Edwards Enterpriseone Tools, Jd Edwards Products	2024-08-06	N/A
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-2325, CVE-2011-2326, and CVE-2011-3509.
CVE-2011-3509	1 Oracle	2 Jd Edwards Enterpriseone Tools, Jd Edwards Products	2024-08-06	N/A
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-2325, CVE-2011-2326, and CVE-2011-3524.
CVE-2011-3514	1 Oracle	2 Jd Edwards Enterpriseone Tools, Jd Edwards Products	2024-08-06	N/A
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect integrity, related to Enterprise Infrastructure SEC (JDENET).
CVE-2011-2317	1 Oracle	2 Jd Edwards Enterpriseone Tools, Jd Edwards Products	2024-08-06	N/A
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect integrity, related to Enterprise Infrastucture SEC (JDNET).
CVE-2011-2325	1 Oracle	2 Jd Edwards Enterpriseone Tools, Jd Edwards Products	2024-08-06	N/A
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-2326, CVE-2011-3509, and CVE-2011-3524.
CVE-2011-2326	1 Oracle	2 Jd Edwards Enterpriseone Tools, Jd Edwards Products	2024-08-06	N/A
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-2325, CVE-2011-3509, and CVE-2011-3524.
CVE-2011-2321	1 Oracle	2 Jd Edwards Enterpriseone Tools, Jd Edwards Products	2024-08-06	N/A
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDNET).
CVE-2011-2324	1 Oracle	2 Jd Edwards Enterpriseone Tools, Jd Edwards Products	2024-08-06	N/A
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote attackers to affect availability, related to Enterprise Infrastructure SEC (JDENET).

« first previous Page 8 of 8.