CVE-2022-21631 - JD Edwards EnterpriseOne Tools Design Tools SEC Vulnerability Explained
CVE-2022-21631 is a serious vulnerability in Oracle's JD Edwards EnterpriseOne Tools, specifically within the Design Tools SEC component. This flaw exists in all
CVE-2022-39411 Oracle Transportation Management is affected by a vulnerability in versions 6.4.3 and 6.5.1.
603 CVE-2017-32316 352 CSRF 2018-05-15 2018-06-15 604 A remote code execution vulnerability in OCM Remote Control allows an attacker to execute code with elevated privileges
CVE-2022-39399 An issue was discovered in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE. The vulnerability could be exploited to execute arbitrary code.
code installed by an administrator). Unpatched clients, servers and end users can be compromised by this issue. Furthermore, for an application to be vulnerable, it
CVE-2022-21636 The Oracle Applications Framework is affected by a vulnerability in versions 12.2.6-12.2.11. Versions earlier than 12.2.6 are not affected.
Due to insecure session management, an attacker can hijack user session and perform any action on behalf of the victim.
Risk of escalated privileges (ROP)
CVE-2022-21630 Vulnerability in Oracle JD Edwards tools product 9.2.6.4 and earlier.
Due to the risk of exploitation, publishing detailed information of this vulnerability is not recommended. However, the Common Vulnerabilities and Exposures project has assigned this
Episode
00:00:00
00:00:00