Vuldb Updates

A vulnerability classified as critical was found in Oracle FLEXCUBE Investor Servicing 12.1.0/12.3.0/12.4.0/14.0.0/14.1.0. The impacted element is an unknown function of the component Infrastructure. Executing a manipulation can lead to improper resource management. This vulnerability is tracked as CVE-2019-12402. The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.

A vulnerability described as problematic has been identified in Apache Commons Compress 1.15/1.16/1.17/1.18. The impacted element is an unknown function of the component File Name Encoding Handler. Such manipulation leads to improper resource management. This vulnerability is traded as CVE-2019-12402. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Codehaus 1.9.x. It has been rated as critical. The impacted element is an unknown function. This manipulation causes deserialization. This vulnerability is registered as CVE-2019-10202. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability was found in Codehaus jackson-mapper-asl org.codehaus.jackson:jackson-mapper-asl:1.9.x and classified as critical. This affects an unknown function of the component XML Data Handler. Executing a manipulation can lead to xml external entity reference. This vulnerability is tracked as CVE-2019-10172. The attack can be launched remotely. No exploit exists.

A vulnerability has been found in Oracle Business Intelligence Enterprise Edition 12.2.1.4.0 and classified as critical. This impacts an unknown function of the component BI Platform Security. The manipulation leads to deserialization. This vulnerability is referenced as CVE-2019-10086. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability was found in Oracle Hyperion Calculation Manager 11.2.14.0.000. It has been rated as critical. Impacted is an unknown function of the component Security. Performing a manipulation results in deserialization. This vulnerability was named CVE-2019-10086. The attack may be initiated remotely. There is no available exploit.

A vulnerability categorized as critical has been discovered in Oracle Hyperion Planning 11.2.14.0.000. The affected element is an unknown function of the component Security. Executing a manipulation can lead to deserialization. The identification of this vulnerability is CVE-2019-10086. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Oracle WebCenter Content 12.2.1.4.0 and classified as critical. This issue affects some unknown processing of the component ADF UCM Application. Such manipulation leads to deserialization. This vulnerability is listed as CVE-2019-10086. The attack may be performed from remote. There is no available exploit.

A vulnerability has been found in Oracle Identity Manager 12.2.1.4.0 and classified as critical. This vulnerability affects unknown code of the component Third Party. This manipulation causes deserialization. This vulnerability is tracked as CVE-2019-10086. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability was found in Oracle Insurance Policy Administration Operational Data Store for Life and Annuity 1.0.1.8. It has been declared as critical. This affects an unknown part of the component Logger. Executing a manipulation can lead to deserialization. The identification of this vulnerability is CVE-2019-10086. The attack may be launched remotely. There is no exploit available.

A vulnerability identified as critical has been detected in Oracle Commerce Guided Search 11.3.2. This affects an unknown function of the component Experience Manager/Platform Services. Performing a manipulation results in deserialization. This vulnerability is known as CVE-2019-10086. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability labeled as critical has been found in Oracle Business Intelligence Enterprise Edition 6.4.0.0.0/7.0.0.0.0/12.2.1.4.0. Affected is an unknown function of the component Presentation Services. Such manipulation leads to deserialization. This vulnerability is referenced as CVE-2019-10086. It is possible to launch the attack remotely. No exploit is available.

A vulnerability marked as critical has been reported in Oracle Business Intelligence Enterprise Edition 12.2.1.4.0. Affected by this vulnerability is an unknown functionality of the component Service Administration UI. Performing a manipulation results in deserialization. This vulnerability is identified as CVE-2019-10086. The attack can be initiated remotely. There is not any exploit available.

A vulnerability marked as critical has been reported in Oracle Retail Sales Audit 16.0.3. Impacted is an unknown function of the component others. Performing a manipulation results in deserialization. This vulnerability is known as CVE-2019-10086. Remote exploitation of the attack is possible. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Oracle Agile Engineering Data Management 6.2.1.0. Affected by this issue is some unknown functionality of the component Installation Issues. Performing a manipulation results in Remote Code Execution. This vulnerability was named CVE-2019-10086. The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Oracle Product Lifecycle Analytics 3.6.1. This affects an unknown part of the component Installation Issues. Executing a manipulation can lead to deserialization. The identification of this vulnerability is CVE-2019-10086. The attack may be launched remotely. There is no exploit available. You should upgrade the affected component.

A vulnerability was found in Oracle Human Resources up to 12.2.11. It has been declared as critical. This issue affects some unknown processing of the component Common Modules. Such manipulation leads to deserialization. This vulnerability is referenced as CVE-2019-10086. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Oracle Business Intelligence Enterprise Edition 6.4.0.0.0 and classified as critical. This affects an unknown part of the component Analytics Server. Such manipulation leads to deserialization. This vulnerability is referenced as CVE-2019-10086. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Oracle Retail Invoice Matching 16.0.3. It has been rated as critical. The affected element is an unknown function of the component Security. The manipulation leads to deserialization. This vulnerability is traded as CVE-2019-10086. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, has been found in Oracle Health Sciences Data Management Workbench 2.5.2.1/3.0.0.0. This affects an unknown part of the component User Interface. This manipulation causes deserialization. This vulnerability is registered as CVE-2019-10086. Remote exploitation of the attack is possible. No exploit is available. It is advisable to upgrade the affected component.