Oracle Documaker vulnerabilities
23 known vulnerabilities affecting oracle/documaker.
Total CVEs
23
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH17MEDIUM4
Vulnerabilities
Page 2 of 2
CVE-2019-13990CRITICALCVSS 9.8≥ 12.6.0, ≤ 12.6.42019-07-26
CVE-2019-13990 [CRITICAL] CWE-611 CVE-2019-13990: initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3
initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows XXE attacks via a job description.
nvd
CVE-2019-5427HIGHCVSS 7.5≥ 12.6.0, ≤ 12.6.62019-04-22
CVE-2019-5427 [HIGH] CWE-776 CVE-2019-5427: c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration du
c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration.
nvd
CVE-2016-0635HIGHCVSS 8.8≤ 12.52016-07-21
CVE-2016-0635 [HIGH] CVE-2016-0635: Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manage
Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2; the Oracle Health Sciences Information Manager component in Oracle Health Sciences Applications 1.2.8.3, 2.0.2.3, and 3.0.1.0; the Oracle Healthcare Master Person Index component in Oracle Health Sciences Applications 2.
nvd
← Previous2 / 2