Oracle Business Intelligence Publisher vulnerabilities
39 known vulnerabilities affecting oracle/business_intelligence_publisher.
Total CVEs
39
CISA KEV
1
actively exploited
Public exploits
3
Exploited in wild
1
Severity breakdown
HIGH32MEDIUM6LOW1
Vulnerabilities
Page 1 of 2
CVE-2024-20980MEDIUMCVSS 5.4v6.4.0.0.0v7.0.0.0.02024-02-17
CVE-2024-20980 [MEDIUM] CVE-2024-20980: Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Web Server). Suppo
Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Web Server). Supported versions that are affected are 6.4.0.0.0 and 7.0.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle BI Publisher. Successful attacks require human interaction from a person other than t
nvd
CVE-2021-2013HIGHCVSS 7.6v5.5.0.0.0v11.1.1.9.0+2 more2021-01-20
CVE-2021-2013 [HIGH] CVE-2021-2013: Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: BI Publishe
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: BI Publisher Security). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle BI Publisher. Successful attacks of this vuln
nvd
CVE-2021-2049HIGHCVSS 7.6v5.5.0.0.0v11.1.1.9.0+2 more2021-01-20
CVE-2021-2049 [HIGH] CVE-2021-2049: Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Administrat
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Administration). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle BI Publisher. Successful attacks of this vulnerabili
nvd
CVE-2021-2062HIGHCVSS 7.6v5.5.0.0.0v11.1.1.9.0+2 more2021-01-20
CVE-2021-2062 [HIGH] CVE-2021-2062: Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Web Server)
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Web Server). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle BI Publisher. Successful attacks require human interacti
nvd
CVE-2021-2050HIGHCVSS 7.6v5.5.0.0.0v11.1.1.9.0+2 more2021-01-20
CVE-2021-2050 [HIGH] CVE-2021-2050: Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: E-Business
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: E-Business Suite - XDO). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle BI Publisher. Successful attacks of this vuln
nvd
CVE-2021-2051HIGHCVSS 7.6v5.5.0.0.0v11.1.1.9.0+2 more2021-01-20
CVE-2021-2051 [HIGH] CVE-2021-2051: Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: E-Business
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: E-Business Suite - XDO). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle BI Publisher. Successful attacks of this vuln
nvd
CVE-2020-14879HIGHCVSS 8.5v5.5.0.0.0v11.1.1.9.0+2 more2020-10-21
CVE-2020-14879 [HIGH] CVE-2020-14879: Vulnerability in the BI Publisher product of Oracle Fusion Middleware (component: E-Business Suite -
Vulnerability in the BI Publisher product of Oracle Fusion Middleware (component: E-Business Suite - XDO). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise BI Publisher. While the vulnerability is in BI Publisher
nvd
CVE-2020-14780HIGHCVSS 7.1v5.5.0.0.0v11.1.1.9.0+2 more2020-10-21
CVE-2020-14780 [HIGH] CVE-2020-14780: Vulnerability in the BI Publisher product of Oracle Fusion Middleware (component: BI Publisher Secur
Vulnerability in the BI Publisher product of Oracle Fusion Middleware (component: BI Publisher Security). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher. Successful attacks require human interacti
nvd
CVE-2020-14784HIGHCVSS 8.2v11.1.1.9.0v12.2.1.3.0+1 more2020-10-21
CVE-2020-14784 [HIGH] CVE-2020-14784: Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Mobile Serv
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Mobile Service). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle BI Publisher. Successful attacks require human interaction f
nvd
CVE-2020-14842HIGHCVSS 8.2v5.5.0.0.0v11.1.1.9.0+2 more2020-10-21
CVE-2020-14842 [HIGH] CVE-2020-14842: Vulnerability in the BI Publisher product of Oracle Fusion Middleware (component: BI Publisher Secur
Vulnerability in the BI Publisher product of Oracle Fusion Middleware (component: BI Publisher Security). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher. Successful attacks require human interacti
nvd
CVE-2020-14880HIGHCVSS 8.5v5.5.0.0.0v11.1.1.9.0+2 more2020-10-21
CVE-2020-14880 [HIGH] CVE-2020-14880: Vulnerability in the BI Publisher product of Oracle Fusion Middleware (component: E-Business Suite -
Vulnerability in the BI Publisher product of Oracle Fusion Middleware (component: E-Business Suite - XDO). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise BI Publisher. While the vulnerability is in BI Publisher
nvd
CVE-2020-14696HIGHCVSS 7.2v11.1.1.9.0v12.2.1.3.0+1 more2020-07-15
CVE-2020-14696 [HIGH] CVE-2020-14696: Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Layout Temp
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Layout Templates). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle BI Publisher. While the vulnerability is in Oracle BI Publ
nvd
CVE-2019-2906HIGHCVSS 8.2v11.1.1.9.04v12.2.1.3.0+1 more2019-10-16
CVE-2019-2906 [HIGH] CVE-2019-2906: Vulnerability in the BI Publisher (formerly XML Publisher) product of Oracle Fusion Middleware (comp
Vulnerability in the BI Publisher (formerly XML Publisher) product of Oracle Fusion Middleware (component: Mobile Service). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher (formerly XML Publisher). Successful a
nvd
CVE-2019-2742HIGHCVSS 7.2v11.1.1.9.02019-07-23
CVE-2019-2742 [HIGH] CVE-2019-2742: Vulnerability in the Oracle BI Publisher component of Oracle Fusion Middleware (subcomponent: Web Se
Vulnerability in the Oracle BI Publisher component of Oracle Fusion Middleware (subcomponent: Web Service API). The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle BI Publisher. While the vulnerability is in Oracle BI Publisher, attacks may signi
nvd
CVE-2019-2595HIGHCVSS 8.2v11.1.1.9.0v12.2.1.3.0+1 more2019-04-23
CVE-2019-2595 [HIGH] CVE-2019-2595: Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (su
Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher (formerly XML Publisher).
nvd
CVE-2019-2616HIGHCVSS 7.2KEVPoCv11.1.1.9.0v12.2.1.3.0+1 more2019-04-23
CVE-2019-2616 [HIGH] CVE-2019-2616: Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (su
Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher (formerly XML Publisher).
nvd
CVE-2019-2601HIGHCVSS 7.6v11.1.1.9.0v12.2.1.3.0+1 more2019-04-23
CVE-2019-2601 [HIGH] CVE-2019-2601: Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (su
Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise BI Publisher (formerly XML Publisher). S
nvd
CVE-2019-2588MEDIUMCVSS 4.9PoCv11.1.1.9.0v12.2.1.3.0+1 more2019-04-23
CVE-2019-2588 [MEDIUM] CVE-2019-2588: Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (su
Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise BI Publisher (formerly XML Publisher)
nvd
CVE-2018-2900HIGHCVSS 8.2v11.1.1.7.02018-07-18
CVE-2018-2900 [HIGH] CVE-2018-2900: Vulnerability in the BI Publisher component of Oracle Fusion Middleware (subcomponent: Layout Tools)
Vulnerability in the BI Publisher component of Oracle Fusion Middleware (subcomponent: Layout Tools). The supported version that is affected is 11.1.1.7.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher. Successful attacks of this vulnerability can result in unauthorized creation, deletio
nvd
CVE-2018-2958HIGHCVSS 8.2v11.1.1.7.0v11.1.1.9.0+2 more2018-07-18
CVE-2018-2958 [HIGH] CVE-2018-2958: Vulnerability in the BI Publisher component of Oracle Fusion Middleware (subcomponent: BI Publisher
Vulnerability in the BI Publisher component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher. Successful attacks of this vulnerabilit
nvd
1 / 2Next →