Oracle Hyperion Financial Management vulnerabilities

CVE-2021-2158 [LOW] CVE-2021-2158: Vulnerability in the Hyperion Financial Management product of Oracle Hyperion (component: Task Autom Vulnerability in the Hyperion Financial Management product of Oracle Hyperion (component: Task Automation). The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Management. Successful attacks require human interaction from a person othe

CVE-2020-2777 [MEDIUM] CVE-2020-2777: Vulnerability in the Hyperion Financial Management product of Oracle Hyperion (component: Security). Vulnerability in the Hyperion Financial Management product of Oracle Hyperion (component: Security). The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Management. Successful attacks require human interaction from a person other th

CVE-2019-10219 [MEDIUM] CWE-79 CVE-2019-10219: A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properl A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

CVE-2019-2899 [LOW] CVE-2019-2899: Vulnerability in the Oracle JDeveloper and ADF product of Oracle Fusion Middleware (component: OAM). Vulnerability in the Oracle JDeveloper and ADF product of Oracle Fusion Middleware (component: OAM). Supported versions that are affected are 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle JDeveloper and ADF. Successful attacks require human int

CVE-2012-1714 [CRITICAL] CVE-2012-1714: Unspecified vulnerability in a TList 6 ActiveX control in Oracle Hyperion Financial Management 11.1. Unspecified vulnerability in a TList 6 ActiveX control in Oracle Hyperion Financial Management 11.1.1.4 and 11.1.2.1.104 allows remote attackers to execute arbitrary code via unknown vectors.