Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-27636 (GCVE-0-2025-27636)
Vulnerability from cvelistv5 – Published: 2025-03-09 12:09 – Updated: 2026-02-26 19:09
VLAI
EPSS
Title
Apache Camel: Camel Message Header Injection via Improper Filtering
Summary
Bypass/Injection vulnerability in Apache Camel components under particular conditions.
This issue affects Apache Camel: from 4.10.0 through <= 4.10.1, from 4.8.0 through <= 4.8.4, from 3.10.0 through <= 3.22.3.
Users are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.
This vulnerability is present in Camel's default incoming header filter, that allows an attacker to include Camel specific
headers that for some Camel components can alter the behaviours such as the camel-bean component, to call another method
on the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send
the message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component
The attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are
directly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests
that are send to the Camel application.
All the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.
In these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.
In terms of usage of the default header filter strategy the list of components using that is:
* camel-activemq
* camel-activemq6
* camel-amqp
* camel-aws2-sqs
* camel-azure-servicebus
* camel-cxf-rest
* camel-cxf-soap
* camel-http
* camel-jetty
* camel-jms
* camel-kafka
* camel-knative
* camel-mail
* camel-nats
* camel-netty-http
* camel-platform-http
* camel-rest
* camel-sjms
* camel-spring-rabbitmq
* camel-stomp
* camel-tahu
* camel-undertow
* camel-xmpp
The vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with "Camel", "camel", or "org.apache.camel.".
Mitigation: You can easily work around this in your Camel applications by removing the headers in your Camel routes. There are many ways of doing this, also globally or per route. This means you could use the removeHeaders EIP, to filter out anything like "cAmel, cAMEL" etc, or in general everything not starting with "Camel", "camel" or "org.apache.camel.".
Severity
5.6 (Medium)
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- Bypass/Injection
- CWE-178 - Improper Handling of Case Sensitivity
Assigner
References
6 references
| URL | Tags |
|---|---|
| https://lists.apache.org/thread/l3zcg3vts88bmc7w8… | vendor-advisory |
| https://issues.apache.org/jira/browse/CAMEL-21828 | issue-tracking |
| https://camel.apache.org/security/CVE-2025-27636.html | vendor-advisory |
| http://www.openwall.com/lists/oss-security/2025/03/09/1 | |
| https://github.com/akamai/CVE-2025-27636-Apache-C… | exploit |
| https://camel.apache.org/security/CVE-2025-27636.… | vendor-advisory |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Apache Software Foundation | Apache Camel |
Affected:
4.10.0 , < 4.10.2
(semver)
Affected: 4.8.0 , < 4.8.5 (semver) Affected: 3.10.0 , < 3.22.4 (semver) |
Credits
Mark Thorson
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-03-09T17:02:21.478Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2025/03/09/1"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-27636",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-10-22T03:55:18.536426Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-178",
"description": "CWE-178 Improper Handling of Case Sensitivity",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-26T19:09:44.229Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC/blob/main/src/main/java/com/example/camel/VulnerableCamel.java"
},
{
"tags": [
"vendor-advisory"
],
"url": "https://camel.apache.org/security/CVE-2025-27636.txt.asc"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://repo.maven.apache.org/maven2",
"defaultStatus": "unaffected",
"packageName": "org.apache.camel:camel",
"product": "Apache Camel",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "4.10.2",
"status": "affected",
"version": "4.10.0",
"versionType": "semver"
},
{
"lessThan": "4.8.5",
"status": "affected",
"version": "4.8.0",
"versionType": "semver"
},
{
"lessThan": "3.22.4",
"status": "affected",
"version": "3.10.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Mark Thorson"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eBypass/Injection vulnerability in Apache Camel components under particular conditions.\u003c/p\u003e\u003cp\u003eThis issue affects Apache Camel: from 4.10.0 through \u0026lt;= 4.10.1, from 4.8.0 through \u0026lt;= 4.8.4, from 3.10.0 through \u0026lt;= 3.22.3.\u003c/p\u003e\u003cp\u003eUsers are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.\u003c/p\u003e\u003cdiv\u003e\u003c/div\u003e\u003cdiv\u003eThis vulnerability is present in Camel\u0027s default incoming header filter, that allows an attacker to include Camel specific\u003c/div\u003e\u003cdiv\u003eheaders that for some Camel components can alter the behaviours such as the camel-bean component, to call another method\u003c/div\u003e\u003cdiv\u003eon the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send\u003c/div\u003e\u003cdiv\u003ethe message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003eThe attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are\u003c/div\u003e\u003cdiv\u003edirectly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests\u003c/div\u003e\u003cdiv\u003ethat are send to the Camel application.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003eAll the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.\u003cbr\u003e\u003cbr\u003eIn these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.\u003cbr\u003e\u003cbr\u003e\u003cdiv\u003eIn terms of usage of the default header filter strategy the list of components using that is: \u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cdiv\u003e\u003cul\u003e\u003cli\u003ecamel-activemq\u003c/li\u003e\u003cli\u003ecamel-activemq6\u003c/li\u003e\u003cli\u003ecamel-amqp\u003c/li\u003e\u003cli\u003ecamel-aws2-sqs\u003c/li\u003e\u003cli\u003ecamel-azure-servicebus\u003c/li\u003e\u003cli\u003ecamel-cxf-rest\u003c/li\u003e\u003cli\u003ecamel-cxf-soap\u003c/li\u003e\u003cli\u003ecamel-http\u003c/li\u003e\u003cli\u003ecamel-jetty\u003c/li\u003e\u003cli\u003ecamel-jms\u003c/li\u003e\u003cli\u003ecamel-kafka\u003c/li\u003e\u003cli\u003ecamel-knative\u003c/li\u003e\u003cli\u003ecamel-mail\u003c/li\u003e\u003cli\u003ecamel-nats\u003c/li\u003e\u003cli\u003ecamel-netty-http\u003c/li\u003e\u003cli\u003ecamel-platform-http\u003c/li\u003e\u003cli\u003ecamel-rest\u003c/li\u003e\u003cli\u003ecamel-sjms\u003c/li\u003e\u003cli\u003ecamel-spring-rabbitmq\u003c/li\u003e\u003cli\u003ecamel-stomp\u003c/li\u003e\u003cli\u003ecamel-tahu\u003c/li\u003e\u003cli\u003ecamel-undertow\u003c/li\u003e\u003cli\u003ecamel-xmpp\u003c/li\u003e\u003c/ul\u003e\u003c/div\u003e\u003c/div\u003e\u003cdiv\u003eThe vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with \"Camel\", \"camel\", or \"org.apache.camel.\".\u0026nbsp;\u003c/div\u003e\u003cbr\u003e\u003cdiv\u003e\u003cspan style=\"background-color: var(--wht);\"\u003eMitigation:\u0026nbsp;\u003c/span\u003eYou can easily work around this in your Camel applications by removing the\u0026nbsp;headers in your Camel routes. There are many ways of doing this, also\u0026nbsp;globally or per route. This means you could use the removeHeaders EIP, to filter out anything like \"cAmel, cAMEL\" etc, or in general everything not starting with \"Camel\", \"camel\" or \"org.apache.camel.\".\u0026nbsp;\u003cbr\u003e\u003c/div\u003e\u003cbr\u003e"
}
],
"value": "Bypass/Injection vulnerability in Apache Camel components under particular conditions.\n\nThis issue affects Apache Camel: from 4.10.0 through \u003c= 4.10.1, from 4.8.0 through \u003c= 4.8.4, from 3.10.0 through \u003c= 3.22.3.\n\nUsers are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.\n\n\n\nThis vulnerability is present in Camel\u0027s default incoming header filter, that allows an attacker to include Camel specific\n\nheaders that for some Camel components can alter the behaviours such as the camel-bean component, to call another method\n\non the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send\n\nthe message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component\n\n\n\n\nThe attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are\n\ndirectly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests\n\nthat are send to the Camel application.\n\n\n\n\nAll the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.\n\nIn these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.\n\nIn terms of usage of the default header filter strategy the list of components using that is: \n\n\n * camel-activemq\n * camel-activemq6\n * camel-amqp\n * camel-aws2-sqs\n * camel-azure-servicebus\n * camel-cxf-rest\n * camel-cxf-soap\n * camel-http\n * camel-jetty\n * camel-jms\n * camel-kafka\n * camel-knative\n * camel-mail\n * camel-nats\n * camel-netty-http\n * camel-platform-http\n * camel-rest\n * camel-sjms\n * camel-spring-rabbitmq\n * camel-stomp\n * camel-tahu\n * camel-undertow\n * camel-xmpp\n\n\n\n\n\n\nThe vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with \"Camel\", \"camel\", or \"org.apache.camel.\".\u00a0\n\n\nMitigation:\u00a0You can easily work around this in your Camel applications by removing the\u00a0headers in your Camel routes. There are many ways of doing this, also\u00a0globally or per route. This means you could use the removeHeaders EIP, to filter out anything like \"cAmel, cAMEL\" etc, or in general everything not starting with \"Camel\", \"camel\" or \"org.apache.camel.\"."
}
],
"metrics": [
{
"other": {
"content": {
"text": "moderate"
},
"type": "Textual description of severity"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Bypass/Injection",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-17T14:42:57.795Z",
"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"shortName": "apache"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z"
},
{
"tags": [
"issue-tracking"
],
"url": "https://issues.apache.org/jira/browse/CAMEL-21828"
},
{
"tags": [
"vendor-advisory"
],
"url": "https://camel.apache.org/security/CVE-2025-27636.html"
}
],
"source": {
"defect": [
"CAMEL-21828"
],
"discovery": "UNKNOWN"
},
"title": "Apache Camel: Camel Message Header Injection via Improper Filtering",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"assignerShortName": "apache",
"cveId": "CVE-2025-27636",
"datePublished": "2025-03-09T12:09:58.619Z",
"dateReserved": "2025-03-04T11:56:29.254Z",
"dateUpdated": "2026-02-26T19:09:44.229Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-27636",
"date": "2026-06-17",
"epss": "0.79817",
"percentile": "0.99559"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-27636\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2025-03-09T13:15:34.403\",\"lastModified\":\"2025-06-23T18:54:52.400\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Bypass/Injection vulnerability in Apache Camel components under particular conditions.\\n\\nThis issue affects Apache Camel: from 4.10.0 through \u003c= 4.10.1, from 4.8.0 through \u003c= 4.8.4, from 3.10.0 through \u003c= 3.22.3.\\n\\nUsers are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.\\n\\n\\n\\nThis vulnerability is present in Camel\u0027s default incoming header filter, that allows an attacker to include Camel specific\\n\\nheaders that for some Camel components can alter the behaviours such as the camel-bean component, to call another method\\n\\non the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send\\n\\nthe message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component\\n\\n\\n\\n\\nThe attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are\\n\\ndirectly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests\\n\\nthat are send to the Camel application.\\n\\n\\n\\n\\nAll the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.\\n\\nIn these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.\\n\\nIn terms of usage of the default header filter strategy the list of components using that is: \\n\\n\\n * camel-activemq\\n * camel-activemq6\\n * camel-amqp\\n * camel-aws2-sqs\\n * camel-azure-servicebus\\n * camel-cxf-rest\\n * camel-cxf-soap\\n * camel-http\\n * camel-jetty\\n * camel-jms\\n * camel-kafka\\n * camel-knative\\n * camel-mail\\n * camel-nats\\n * camel-netty-http\\n * camel-platform-http\\n * camel-rest\\n * camel-sjms\\n * camel-spring-rabbitmq\\n * camel-stomp\\n * camel-tahu\\n * camel-undertow\\n * camel-xmpp\\n\\n\\n\\n\\n\\n\\nThe vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with \\\"Camel\\\", \\\"camel\\\", or \\\"org.apache.camel.\\\".\u00a0\\n\\n\\nMitigation:\u00a0You can easily work around this in your Camel applications by removing the\u00a0headers in your Camel routes. There are many ways of doing this, also\u00a0globally or per route. This means you could use the removeHeaders EIP, to filter out anything like \\\"cAmel, cAMEL\\\" etc, or in general everything not starting with \\\"Camel\\\", \\\"camel\\\" or \\\"org.apache.camel.\\\".\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de bypass/inyecci\u00f3n en el componente Apache Camel-Bean en determinadas condiciones. Este problema afecta a Apache Camel: desde la versi\u00f3n 4.10.0 hasta la \u0026lt;= 4.10.1, desde la versi\u00f3n 4.8.0 hasta la \u0026lt;= 4.8.4, desde la versi\u00f3n 3.10.0 hasta la \u0026lt;= 3.22.3. Se recomienda a los usuarios que actualicen a la versi\u00f3n 4.10.2 para 4.10.x LTS, 4.8.5 para 4.8.x LTS y 3.22.4 para las versiones 3.x. Esta vulnerabilidad solo est\u00e1 presente en la siguiente situaci\u00f3n. El usuario est\u00e1 utilizando uno de los siguientes servidores HTTP a trav\u00e9s de uno de los siguientes componentes Camel * camel-servlet * camel-jetty * camel-undertow * camel-platform-http * camel-netty-http y en la ruta, el intercambio se enrutar\u00e1 a un productor de camel-bean. Por lo tanto, SOLO el componente camel-bean est\u00e1 afectado. En particular: * La invocaci\u00f3n del bean (solo se ve afectada si usas cualquiera de los anteriores junto con el componente camel-bean). * El bean que se puede llamar tiene m\u00e1s de 1 m\u00e9todo implementado. En estas condiciones, un atacante podr\u00eda falsificar un nombre de encabezado de Camel y hacer que el componente bean invoque otros m\u00e9todos en el mismo bean. La vulnerabilidad surge debido a un error en el mecanismo de filtrado predeterminado que solo bloquea los encabezados que comienzan con \\\"Camel\\\", \\\"camel\\\" u \\\"org.apache.camel\\\". Mitigaci\u00f3n: puedes solucionar esto f\u00e1cilmente en tus aplicaciones Camel eliminando los encabezados en tus rutas Camel. Hay muchas formas de hacer esto, tambi\u00e9n globalmente o por ruta. Esto significa que puedes usar el EIP removeHeaders para filtrar cualquier cosa como \\\"cAmel, cAMEL\\\", etc., o en general todo lo que no comience con \\\"Camel\\\", \\\"camel\\\" u \\\"org.apache.camel\\\".\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L\",\"baseScore\":5.6,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.2,\"impactScore\":3.4}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-178\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.10.0\",\"versionEndExcluding\":\"3.22.4\",\"matchCriteriaId\":\"F955C7FA-20EE-44FC-BB7F-2734A731A9DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.8.0\",\"versionEndExcluding\":\"4.8.5\",\"matchCriteriaId\":\"15914F75-761B-40AD-8489-EA92699F3741\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.10.0\",\"versionEndExcluding\":\"4.10.2\",\"matchCriteriaId\":\"DB496A7D-7E5D-48DA-B49F-4494B7369026\"}]}]}],\"references\":[{\"url\":\"https://camel.apache.org/security/CVE-2025-27636.html\",\"source\":\"security@apache.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://issues.apache.org/jira/browse/CAMEL-21828\",\"source\":\"security@apache.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2025/03/09/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://camel.apache.org/security/CVE-2025-27636.txt.asc\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Exploit\"]},{\"url\":\"https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC/blob/main/src/main/java/com/example/camel/VulnerableCamel.java\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Product\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.openwall.com/lists/oss-security/2025/03/09/1\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-03-09T17:02:21.478Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.6, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-27636\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-10-22T03:55:18.536426Z\"}}}], \"references\": [{\"url\": \"https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC/blob/main/src/main/java/com/example/camel/VulnerableCamel.java\", \"tags\": [\"exploit\"]}, {\"url\": \"https://camel.apache.org/security/CVE-2025-27636.txt.asc\", \"tags\": [\"vendor-advisory\"]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-178\", \"description\": \"CWE-178 Improper Handling of Case Sensitivity\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-03-10T18:51:42.884Z\"}}], \"cna\": {\"title\": \"Apache Camel: Camel Message Header Injection via Improper Filtering\", \"source\": {\"defect\": [\"CAMEL-21828\"], \"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Mark Thorson\"}], \"metrics\": [{\"other\": {\"type\": \"Textual description of severity\", \"content\": {\"text\": \"moderate\"}}}], \"affected\": [{\"vendor\": \"Apache Software Foundation\", \"product\": \"Apache Camel\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.10.0\", \"lessThan\": \"4.10.2\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.8.0\", \"lessThan\": \"4.8.5\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.10.0\", \"lessThan\": \"3.22.4\", \"versionType\": \"semver\"}], \"packageName\": \"org.apache.camel:camel\", \"collectionURL\": \"https://repo.maven.apache.org/maven2\", \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://issues.apache.org/jira/browse/CAMEL-21828\", \"tags\": [\"issue-tracking\"]}, {\"url\": \"https://camel.apache.org/security/CVE-2025-27636.html\", \"tags\": [\"vendor-advisory\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Bypass/Injection vulnerability in Apache Camel components under particular conditions.\\n\\nThis issue affects Apache Camel: from 4.10.0 through \u003c= 4.10.1, from 4.8.0 through \u003c= 4.8.4, from 3.10.0 through \u003c= 3.22.3.\\n\\nUsers are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.\\n\\n\\n\\nThis vulnerability is present in Camel\u0027s default incoming header filter, that allows an attacker to include Camel specific\\n\\nheaders that for some Camel components can alter the behaviours such as the camel-bean component, to call another method\\n\\non the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send\\n\\nthe message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component\\n\\n\\n\\n\\nThe attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are\\n\\ndirectly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests\\n\\nthat are send to the Camel application.\\n\\n\\n\\n\\nAll the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.\\n\\nIn these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.\\n\\nIn terms of usage of the default header filter strategy the list of components using that is: \\n\\n\\n * camel-activemq\\n * camel-activemq6\\n * camel-amqp\\n * camel-aws2-sqs\\n * camel-azure-servicebus\\n * camel-cxf-rest\\n * camel-cxf-soap\\n * camel-http\\n * camel-jetty\\n * camel-jms\\n * camel-kafka\\n * camel-knative\\n * camel-mail\\n * camel-nats\\n * camel-netty-http\\n * camel-platform-http\\n * camel-rest\\n * camel-sjms\\n * camel-spring-rabbitmq\\n * camel-stomp\\n * camel-tahu\\n * camel-undertow\\n * camel-xmpp\\n\\n\\n\\n\\n\\n\\nThe vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with \\\"Camel\\\", \\\"camel\\\", or \\\"org.apache.camel.\\\".\\u00a0\\n\\n\\nMitigation:\\u00a0You can easily work around this in your Camel applications by removing the\\u00a0headers in your Camel routes. There are many ways of doing this, also\\u00a0globally or per route. This means you could use the removeHeaders EIP, to filter out anything like \\\"cAmel, cAMEL\\\" etc, or in general everything not starting with \\\"Camel\\\", \\\"camel\\\" or \\\"org.apache.camel.\\\".\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eBypass/Injection vulnerability in Apache Camel components under particular conditions.\u003c/p\u003e\u003cp\u003eThis issue affects Apache Camel: from 4.10.0 through \u0026lt;= 4.10.1, from 4.8.0 through \u0026lt;= 4.8.4, from 3.10.0 through \u0026lt;= 3.22.3.\u003c/p\u003e\u003cp\u003eUsers are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.\u003c/p\u003e\u003cdiv\u003e\u003c/div\u003e\u003cdiv\u003eThis vulnerability is present in Camel\u0027s default incoming header filter, that allows an attacker to include Camel specific\u003c/div\u003e\u003cdiv\u003eheaders that for some Camel components can alter the behaviours such as the camel-bean component, to call another method\u003c/div\u003e\u003cdiv\u003eon the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send\u003c/div\u003e\u003cdiv\u003ethe message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003eThe attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are\u003c/div\u003e\u003cdiv\u003edirectly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests\u003c/div\u003e\u003cdiv\u003ethat are send to the Camel application.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003eAll the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.\u003cbr\u003e\u003cbr\u003eIn these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.\u003cbr\u003e\u003cbr\u003e\u003cdiv\u003eIn terms of usage of the default header filter strategy the list of components using that is: \u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cdiv\u003e\u003cul\u003e\u003cli\u003ecamel-activemq\u003c/li\u003e\u003cli\u003ecamel-activemq6\u003c/li\u003e\u003cli\u003ecamel-amqp\u003c/li\u003e\u003cli\u003ecamel-aws2-sqs\u003c/li\u003e\u003cli\u003ecamel-azure-servicebus\u003c/li\u003e\u003cli\u003ecamel-cxf-rest\u003c/li\u003e\u003cli\u003ecamel-cxf-soap\u003c/li\u003e\u003cli\u003ecamel-http\u003c/li\u003e\u003cli\u003ecamel-jetty\u003c/li\u003e\u003cli\u003ecamel-jms\u003c/li\u003e\u003cli\u003ecamel-kafka\u003c/li\u003e\u003cli\u003ecamel-knative\u003c/li\u003e\u003cli\u003ecamel-mail\u003c/li\u003e\u003cli\u003ecamel-nats\u003c/li\u003e\u003cli\u003ecamel-netty-http\u003c/li\u003e\u003cli\u003ecamel-platform-http\u003c/li\u003e\u003cli\u003ecamel-rest\u003c/li\u003e\u003cli\u003ecamel-sjms\u003c/li\u003e\u003cli\u003ecamel-spring-rabbitmq\u003c/li\u003e\u003cli\u003ecamel-stomp\u003c/li\u003e\u003cli\u003ecamel-tahu\u003c/li\u003e\u003cli\u003ecamel-undertow\u003c/li\u003e\u003cli\u003ecamel-xmpp\u003c/li\u003e\u003c/ul\u003e\u003c/div\u003e\u003c/div\u003e\u003cdiv\u003eThe vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with \\\"Camel\\\", \\\"camel\\\", or \\\"org.apache.camel.\\\".\u0026nbsp;\u003c/div\u003e\u003cbr\u003e\u003cdiv\u003e\u003cspan style=\\\"background-color: var(--wht);\\\"\u003eMitigation:\u0026nbsp;\u003c/span\u003eYou can easily work around this in your Camel applications by removing the\u0026nbsp;headers in your Camel routes. There are many ways of doing this, also\u0026nbsp;globally or per route. This means you could use the removeHeaders EIP, to filter out anything like \\\"cAmel, cAMEL\\\" etc, or in general everything not starting with \\\"Camel\\\", \\\"camel\\\" or \\\"org.apache.camel.\\\".\u0026nbsp;\u003cbr\u003e\u003c/div\u003e\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"Bypass/Injection\"}]}], \"providerMetadata\": {\"orgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"shortName\": \"apache\", \"dateUpdated\": \"2025-03-17T14:42:57.795Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-27636\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-02-26T19:09:44.229Z\", \"dateReserved\": \"2025-03-04T11:56:29.254Z\", \"assignerOrgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"datePublished\": \"2025-03-09T12:09:58.619Z\", \"assignerShortName\": \"apache\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
Title
Уязвимость компонента Default Header Filtering фреймворка Apache Camel, связанная с недостаточной проверкой регистра, позволяющая нарушителю оказать влияние на целостность, доступность и конфиденциальность защищаемой информации
Description
Уязвимость компонента Default Header Filtering java-фреймворка Apache Camel связана с недостаточной проверкой регистра. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, оказать влияние на целостность, доступность и конфиденциальность защищаемой информации
Severity
Vendor
Apache Software Foundation
Software Name
Camel
Software Version
от 4.10.0 до 4.10.2 (Camel), от 4.8.0 до 4.8.5 (Camel), от 3.10.0 до 3.22.4 (Camel)
Possible Mitigations
Использование рекомендаций:
https://camel.apache.org/security/CVE-2025-27636.html
Reference
https://camel.apache.org/security/CVE-2025-27636.html
https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC
CWE
CWE-178
{
"CVSS 2.0": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"CVSS 3.0": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Apache Software Foundation",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u043e\u0442 4.10.0 \u0434\u043e 4.10.2 (Camel), \u043e\u0442 4.8.0 \u0434\u043e 4.8.5 (Camel), \u043e\u0442 3.10.0 \u0434\u043e 3.22.4 (Camel)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://camel.apache.org/security/CVE-2025-27636.html",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "09.03.2025",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "14.03.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "14.03.2025",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-02723",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2025-27636",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Camel",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 Default Header Filtering \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0430 Apache Camel, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043b\u0438\u044f\u043d\u0438\u0435 \u043d\u0430 \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0438 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u0430\u044f \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0430 \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0430 (CWE-178)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 Default Header Filtering java-\u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0430 Apache Camel \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043b\u0438\u044f\u043d\u0438\u0435 \u043d\u0430 \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0438 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://camel.apache.org/security/CVE-2025-27636.html\nhttps://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-178",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,1)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,6)"
}
Title
Apache Camel任意命令执⾏漏洞
Description
Apache Camel是美国阿帕奇(Apache)基金会的一套开源的基于Enterprise Integration Pattern(企业整合模式,简称EIP)的集成框架。该框架提供企业集成模式的Java对象(POJO)的实现,且通过应用程序接口来配置路由和中介的规则。
Apache Camel存在任意命令执⾏漏洞,该漏洞是由于Apache Camel对请求头⼤⼩写处理不当,攻击者可利用该漏洞通过传递特殊格式的头部(如"CAmelExecCommandExecutable"而非"CamelExecCommandExecutable")绕过安全过滤,覆盖预定义命令,导致任意命令执⾏。
Severity
高
Patch Name
Apache Camel任意命令执⾏漏洞的补丁
Patch Description
Apache Camel是美国阿帕奇(Apache)基金会的一套开源的基于Enterprise Integration Pattern(企业整合模式,简称EIP)的集成框架。该框架提供企业集成模式的Java对象(POJO)的实现,且通过应用程序接口来配置路由和中介的规则。
Apache Camel存在任意命令执⾏漏洞,该漏洞是由于Apache Camel对请求头⼤⼩写处理不当,攻击者可利用该漏洞通过传递特殊格式的头部(如"CAmelExecCommandExecutable"而非"CamelExecCommandExecutable")绕过安全过滤,覆盖预定义命令,导致任意命令执⾏。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已提供漏洞修补方案,请关注厂商主页及时更新: http://www.apache.org/
Reference
https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC
Impacted products
| Name | ['Apache Camel >=4.10.0,<=4.10.1', 'Apache Camel >=4.8.0,<=4.8.4', 'Apache Camel >=3.10.0,<=3.22.3'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2025-27636"
}
},
"description": "Apache Camel\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u5f00\u6e90\u7684\u57fa\u4e8eEnterprise Integration Pattern\uff08\u4f01\u4e1a\u6574\u5408\u6a21\u5f0f\uff0c\u7b80\u79f0EIP\uff09\u7684\u96c6\u6210\u6846\u67b6\u3002\u8be5\u6846\u67b6\u63d0\u4f9b\u4f01\u4e1a\u96c6\u6210\u6a21\u5f0f\u7684Java\u5bf9\u8c61\uff08POJO\uff09\u7684\u5b9e\u73b0\uff0c\u4e14\u901a\u8fc7\u5e94\u7528\u7a0b\u5e8f\u63a5\u53e3\u6765\u914d\u7f6e\u8def\u7531\u548c\u4e2d\u4ecb\u7684\u89c4\u5219\u3002\n\nApache Camel\u5b58\u5728\u4efb\u610f\u547d\u4ee4\u6267\u2f8f\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8eApache Camel\u5bf9\u8bf7\u6c42\u5934\u2f24\u2f29\u5199\u5904\u7406\u4e0d\u5f53\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u4f20\u9012\u7279\u6b8a\u683c\u5f0f\u7684\u5934\u90e8\uff08\u5982\"CAmelExecCommandExecutable\"\u800c\u975e\"CamelExecCommandExecutable\"\uff09\u7ed5\u8fc7\u5b89\u5168\u8fc7\u6ee4\uff0c\u8986\u76d6\u9884\u5b9a\u4e49\u547d\u4ee4\uff0c\u5bfc\u81f4\u4efb\u610f\u547d\u4ee4\u6267\u2f8f\u3002",
"formalWay": "\u5382\u5546\u5df2\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u8865\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u53ca\u65f6\u66f4\u65b0\uff1a\r\nhttp://www.apache.org/",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2025-05169",
"openTime": "2025-03-17",
"patchDescription": "Apache Camel\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u5f00\u6e90\u7684\u57fa\u4e8eEnterprise Integration Pattern\uff08\u4f01\u4e1a\u6574\u5408\u6a21\u5f0f\uff0c\u7b80\u79f0EIP\uff09\u7684\u96c6\u6210\u6846\u67b6\u3002\u8be5\u6846\u67b6\u63d0\u4f9b\u4f01\u4e1a\u96c6\u6210\u6a21\u5f0f\u7684Java\u5bf9\u8c61\uff08POJO\uff09\u7684\u5b9e\u73b0\uff0c\u4e14\u901a\u8fc7\u5e94\u7528\u7a0b\u5e8f\u63a5\u53e3\u6765\u914d\u7f6e\u8def\u7531\u548c\u4e2d\u4ecb\u7684\u89c4\u5219\u3002\r\n\r\nApache Camel\u5b58\u5728\u4efb\u610f\u547d\u4ee4\u6267\u2f8f\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8eApache Camel\u5bf9\u8bf7\u6c42\u5934\u2f24\u2f29\u5199\u5904\u7406\u4e0d\u5f53\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u4f20\u9012\u7279\u6b8a\u683c\u5f0f\u7684\u5934\u90e8\uff08\u5982\"CAmelExecCommandExecutable\"\u800c\u975e\"CamelExecCommandExecutable\"\uff09\u7ed5\u8fc7\u5b89\u5168\u8fc7\u6ee4\uff0c\u8986\u76d6\u9884\u5b9a\u4e49\u547d\u4ee4\uff0c\u5bfc\u81f4\u4efb\u610f\u547d\u4ee4\u6267\u2f8f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Apache Camel\u4efb\u610f\u547d\u4ee4\u6267\u2f8f\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Apache Camel \u003e=4.10.0\uff0c\u003c=4.10.1",
"Apache Camel \u003e=4.8.0\uff0c\u003c=4.8.4",
"Apache Camel \u003e=3.10.0\uff0c\u003c=3.22.3"
]
},
"referenceLink": "https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC",
"serverity": "\u9ad8",
"submitTime": "2025-03-13",
"title": "Apache Camel\u4efb\u610f\u547d\u4ee4\u6267\u2f8f\u6f0f\u6d1e"
}
FKIE_CVE-2025-27636
Vulnerability from fkie_nvd - Published: 2025-03-09 13:15 - Updated: 2026-06-17 09:03
Severity
Summary
Bypass/Injection vulnerability in Apache Camel components under particular conditions.
This issue affects Apache Camel: from 4.10.0 through <= 4.10.1, from 4.8.0 through <= 4.8.4, from 3.10.0 through <= 3.22.3.
Users are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.
This vulnerability is present in Camel's default incoming header filter, that allows an attacker to include Camel specific
headers that for some Camel components can alter the behaviours such as the camel-bean component, to call another method
on the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send
the message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component
The attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are
directly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests
that are send to the Camel application.
All the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.
In these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.
In terms of usage of the default header filter strategy the list of components using that is:
* camel-activemq
* camel-activemq6
* camel-amqp
* camel-aws2-sqs
* camel-azure-servicebus
* camel-cxf-rest
* camel-cxf-soap
* camel-http
* camel-jetty
* camel-jms
* camel-kafka
* camel-knative
* camel-mail
* camel-nats
* camel-netty-http
* camel-platform-http
* camel-rest
* camel-sjms
* camel-spring-rabbitmq
* camel-stomp
* camel-tahu
* camel-undertow
* camel-xmpp
The vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with "Camel", "camel", or "org.apache.camel.".
Mitigation: You can easily work around this in your Camel applications by removing the headers in your Camel routes. There are many ways of doing this, also globally or per route. This means you could use the removeHeaders EIP, to filter out anything like "cAmel, cAMEL" etc, or in general everything not starting with "Camel", "camel" or "org.apache.camel.".
References
{
"affected": [
{
"affectedData": [
{
"collectionURL": "https://repo.maven.apache.org/maven2",
"defaultStatus": "unaffected",
"packageName": "org.apache.camel:camel",
"product": "Apache Camel",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "4.10.2",
"status": "affected",
"version": "4.10.0",
"versionType": "semver"
},
{
"lessThan": "4.8.5",
"status": "affected",
"version": "4.8.0",
"versionType": "semver"
},
{
"lessThan": "3.22.4",
"status": "affected",
"version": "3.10.0",
"versionType": "semver"
}
]
}
],
"source": "security@apache.org"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F955C7FA-20EE-44FC-BB7F-2734A731A9DC",
"versionEndExcluding": "3.22.4",
"versionStartIncluding": "3.10.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "15914F75-761B-40AD-8489-EA92699F3741",
"versionEndExcluding": "4.8.5",
"versionStartIncluding": "4.8.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DB496A7D-7E5D-48DA-B49F-4494B7369026",
"versionEndExcluding": "4.10.2",
"versionStartIncluding": "4.10.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Bypass/Injection vulnerability in Apache Camel components under particular conditions.\n\nThis issue affects Apache Camel: from 4.10.0 through \u003c= 4.10.1, from 4.8.0 through \u003c= 4.8.4, from 3.10.0 through \u003c= 3.22.3.\n\nUsers are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.\n\n\n\nThis vulnerability is present in Camel\u0027s default incoming header filter, that allows an attacker to include Camel specific\n\nheaders that for some Camel components can alter the behaviours such as the camel-bean component, to call another method\n\non the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send\n\nthe message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component\n\n\n\n\nThe attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are\n\ndirectly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests\n\nthat are send to the Camel application.\n\n\n\n\nAll the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.\n\nIn these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.\n\nIn terms of usage of the default header filter strategy the list of components using that is: \n\n\n * camel-activemq\n * camel-activemq6\n * camel-amqp\n * camel-aws2-sqs\n * camel-azure-servicebus\n * camel-cxf-rest\n * camel-cxf-soap\n * camel-http\n * camel-jetty\n * camel-jms\n * camel-kafka\n * camel-knative\n * camel-mail\n * camel-nats\n * camel-netty-http\n * camel-platform-http\n * camel-rest\n * camel-sjms\n * camel-spring-rabbitmq\n * camel-stomp\n * camel-tahu\n * camel-undertow\n * camel-xmpp\n\n\n\n\n\n\nThe vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with \"Camel\", \"camel\", or \"org.apache.camel.\".\u00a0\n\n\nMitigation:\u00a0You can easily work around this in your Camel applications by removing the\u00a0headers in your Camel routes. There are many ways of doing this, also\u00a0globally or per route. This means you could use the removeHeaders EIP, to filter out anything like \"cAmel, cAMEL\" etc, or in general everything not starting with \"Camel\", \"camel\" or \"org.apache.camel.\"."
},
{
"lang": "es",
"value": "Vulnerabilidad de bypass/inyecci\u00f3n en el componente Apache Camel-Bean en determinadas condiciones. Este problema afecta a Apache Camel: desde la versi\u00f3n 4.10.0 hasta la \u0026lt;= 4.10.1, desde la versi\u00f3n 4.8.0 hasta la \u0026lt;= 4.8.4, desde la versi\u00f3n 3.10.0 hasta la \u0026lt;= 3.22.3. Se recomienda a los usuarios que actualicen a la versi\u00f3n 4.10.2 para 4.10.x LTS, 4.8.5 para 4.8.x LTS y 3.22.4 para las versiones 3.x. Esta vulnerabilidad solo est\u00e1 presente en la siguiente situaci\u00f3n. El usuario est\u00e1 utilizando uno de los siguientes servidores HTTP a trav\u00e9s de uno de los siguientes componentes Camel * camel-servlet * camel-jetty * camel-undertow * camel-platform-http * camel-netty-http y en la ruta, el intercambio se enrutar\u00e1 a un productor de camel-bean. Por lo tanto, SOLO el componente camel-bean est\u00e1 afectado. En particular: * La invocaci\u00f3n del bean (solo se ve afectada si usas cualquiera de los anteriores junto con el componente camel-bean). * El bean que se puede llamar tiene m\u00e1s de 1 m\u00e9todo implementado. En estas condiciones, un atacante podr\u00eda falsificar un nombre de encabezado de Camel y hacer que el componente bean invoque otros m\u00e9todos en el mismo bean. La vulnerabilidad surge debido a un error en el mecanismo de filtrado predeterminado que solo bloquea los encabezados que comienzan con \"Camel\", \"camel\" u \"org.apache.camel\". Mitigaci\u00f3n: puedes solucionar esto f\u00e1cilmente en tus aplicaciones Camel eliminando los encabezados en tus rutas Camel. Hay muchas formas de hacer esto, tambi\u00e9n globalmente o por ruta. Esto significa que puedes usar el EIP removeHeaders para filtrar cualquier cosa como \"cAmel, cAMEL\", etc., o en general todo lo que no comience con \"Camel\", \"camel\" u \"org.apache.camel\"."
}
],
"id": "CVE-2025-27636",
"lastModified": "2026-06-17T09:03:56.247",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 3.4,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
],
"ssvcV203": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"ssvcData": {
"id": "CVE-2025-27636",
"options": [
{
"exploitation": "poc"
},
{
"automatable": "no"
},
{
"technicalImpact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-10-22T03:55:18.536426Z",
"version": "2.0.3"
}
}
]
},
"published": "2025-03-09T13:15:34.403",
"references": [
{
"source": "security@apache.org",
"tags": [
"Vendor Advisory"
],
"url": "https://camel.apache.org/security/CVE-2025-27636.html"
},
{
"source": "security@apache.org",
"tags": [
"Issue Tracking",
"Patch"
],
"url": "https://issues.apache.org/jira/browse/CAMEL-21828"
},
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2025/03/09/1"
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"Exploit"
],
"url": "https://camel.apache.org/security/CVE-2025-27636.txt.asc"
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"Product"
],
"url": "https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC/blob/main/src/main/java/com/example/camel/VulnerableCamel.java"
}
],
"sourceIdentifier": "security@apache.org",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-178"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-2C2H-2855-MF97
Vulnerability from github – Published: 2025-03-09 15:31 – Updated: 2025-03-25 18:38
VLAI
Summary
Apache Camel: Camel Message Header Injection via Improper Filtering
Details
Bypass/Injection vulnerability in Apache Camel components under particular conditions.
This issue affects Apache Camel: from 4.9.0 through <= 4.10.1, from 4.8.0 through <= 4.8.4, from 3.10.0 through <= 3.22.3.
Users are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.
This vulnerability is present in Camel's default incoming header filter, that allows an attacker to include Camel specific headers that for some Camel components can alter the behaviours such as the camel-bean component, to call another method on the bean, than was coded in the application. In the camel-jms component, then a malicious header can be used to send the message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component.
The attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are directly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests that are send to the Camel application.
All the known Camel HTTP component such as camel-servlet, camel-jetty, camel-undertow, camel-platform-http, and camel-netty-http would be vulnerable out of the box.
In these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.
In terms of usage of the default header filter strategy the list of components using that is:
- camel-activemq
- camel-activemq6
- camel-amqp
- camel-aws2-sqs
- camel-azure-servicebus
- camel-cxf-rest
- camel-cxf-soap
- camel-http
- camel-jetty
- camel-jms
- camel-kafka
- camel-knative
- camel-mail
- camel-nats
- camel-netty-http
- camel-platform-http
- camel-rest
- camel-sjms
- camel-spring-rabbitmq
- camel-stomp
- camel-tahu
- camel-undertow
- camel-xmpp
The vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with "Camel", "camel", or "org.apache.camel.".
Mitigation: You can easily work around this in your Camel applications by removing the headers in your Camel routes. There are many ways of doing this, also globally or per route. This means you could use the removeHeaders EIP, to filter out anything like "cAmel, cAMEL" etc, or in general everything not starting with "Camel", "camel" or "org.apache.camel.".
Severity
{
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.camel:camel-support"
},
"ranges": [
{
"events": [
{
"introduced": "3.10.0"
},
{
"fixed": "3.22.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.camel:camel-support"
},
"ranges": [
{
"events": [
{
"introduced": "4.0.0-M1"
},
{
"fixed": "4.8.5"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.camel:camel-support"
},
"ranges": [
{
"events": [
{
"introduced": "4.9.0"
},
{
"fixed": "4.10.2"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2025-27636"
],
"database_specific": {
"cwe_ids": [
"CWE-178"
],
"github_reviewed": true,
"github_reviewed_at": "2025-03-10T20:49:46Z",
"nvd_published_at": "2025-03-09T13:15:34Z",
"severity": "MODERATE"
},
"details": "Bypass/Injection vulnerability in Apache Camel components under particular conditions.\n\nThis issue affects Apache Camel: from 4.9.0 through \u003c= 4.10.1, from 4.8.0 through \u003c= 4.8.4, from 3.10.0 through \u003c= 3.22.3.\n\nUsers are recommended to upgrade to version 4.10.2 for 4.10.x LTS, 4.8.5 for 4.8.x LTS and 3.22.4 for 3.x releases.\n\nThis vulnerability is present in Camel\u0027s default incoming header filter, that allows an attacker to include Camel specific headers that for some Camel components can alter the behaviours such as the camel-bean component, to call another method on the bean, than was coded in the application. In the `camel-jms` component, then a malicious header can be used to send the message to another queue (on the same broker) than was coded in the application. This could also be seen by using the camel-exec component.\n\nThe attacker would need to inject custom headers, such as HTTP protocols. So if you have Camel applications that are directly connected to the internet via HTTP, then an attacker could include malicious HTTP headers in the HTTP requests that are send to the Camel application.\n\nAll the known Camel HTTP component such as `camel-servlet`, `camel-jetty`, `camel-undertow`, `camel-platform-http`, and `camel-netty-http` would be vulnerable out of the box.\n\nIn these conditions an attacker could be able to forge a Camel header name and make the bean component invoking other methods in the same bean.\n\nIn terms of usage of the default header filter strategy the list of components using that is: \n\n * camel-activemq\n * camel-activemq6\n * camel-amqp\n * camel-aws2-sqs\n * camel-azure-servicebus\n * camel-cxf-rest\n * camel-cxf-soap\n * camel-http\n * camel-jetty\n * camel-jms\n * camel-kafka\n * camel-knative\n * camel-mail\n * camel-nats\n * camel-netty-http\n * camel-platform-http\n * camel-rest\n * camel-sjms\n * camel-spring-rabbitmq\n * camel-stomp\n * camel-tahu\n * camel-undertow\n * camel-xmpp\n\nThe vulnerability arises due to a bug in the default filtering mechanism that only blocks headers starting with \"Camel\", \"camel\", or \"org.apache.camel.\". \n\nMitigation: You can easily work around this in your Camel applications by removing the headers in your Camel routes. There are many ways of doing this, also globally or per route. This means you could use the removeHeaders EIP, to filter out anything like \"cAmel, cAMEL\" etc, or in general everything not starting with \"Camel\", \"camel\" or \"org.apache.camel.\".",
"id": "GHSA-2c2h-2855-mf97",
"modified": "2025-03-25T18:38:07Z",
"published": "2025-03-09T15:31:19Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27636"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel/commit/23a833eec6131a3cdce6e4b1b40b3ac2035b6adf"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel/commit/45a6b74f7f8af8fd58f197566938a9534392a624"
},
{
"type": "WEB",
"url": "https://camel.apache.org/security/CVE-2025-27636.html"
},
{
"type": "WEB",
"url": "https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC/blob/main/src/main/java/com/example/camel/VulnerableCamel.java"
},
{
"type": "PACKAGE",
"url": "https://github.com/apache/camel"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel/blob/camel-4.9.0/core/camel-support/src/main/java/org/apache/camel/support/DefaultHeaderFilterStrategy.java"
},
{
"type": "WEB",
"url": "https://issues.apache.org/jira/browse/CAMEL-21828"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2025/03/09/1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"type": "CVSS_V4"
}
],
"summary": "Apache Camel: Camel Message Header Injection via Improper Filtering"
}
RHSA-2025:3091
Vulnerability from csaf_redhat - Published: 2025-03-20 15:47 - Updated: 2026-05-01 08:51Summary
Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Quarkus 3.15 update is now available (RHBQ 3.15.3.SP2)
Severity
Moderate
Notes
Topic: An update for Red Hat Build of Apache Camel 4.8 for Quarkus 3.15 update is now available (RHBQ 3.15.3.SP2).
The purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products.
Red Hat Product Security has rated this update as having a security impact of Moderate.
Details: An update for Red Hat Build of Apache Camel 4.8 for Quarkus 3.15 update is now available (RHBQ 3.15.3.SP2).
The purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products:
* org.apache.camel/camel-http-base: bypass of header filters via specially crafted response (CVE-2025-27636)
* org.apache.camel/camel-http: bypass of header filters via specially crafted response (CVE-2025-27636)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A vulnerability was found in Apache Camel. This flaw allows an attacker to bypass filtering via a specially crafted request containing a certain combination of upper and lower case characters due to an issue in the default header filtering mechanism, which blocks headers starting with "Camel" or "camel."
6.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Build of Apache Camel 4.8 for Quarkus 3.15
Red Hat / Red Hat Build of Apache Camel
|
cpe:/a:redhat:camel_quarkus:3.15
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for Red Hat Build of Apache Camel 4.8 for Quarkus 3.15 update is now available (RHBQ 3.15.3.SP2).\nThe purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products.\nRed Hat Product Security has rated this update as having a security impact of Moderate.",
"title": "Topic"
},
{
"category": "general",
"text": "An update for Red Hat Build of Apache Camel 4.8 for Quarkus 3.15 update is now available (RHBQ 3.15.3.SP2).\nThe purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products:\n* org.apache.camel/camel-http-base: bypass of header filters via specially crafted response (CVE-2025-27636)\n* org.apache.camel/camel-http: bypass of header filters via specially crafted response (CVE-2025-27636)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3091",
"url": "https://access.redhat.com/errata/RHSA-2025:3091"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-27636",
"url": "https://access.redhat.com/security/cve/CVE-2025-27636"
},
{
"category": "external",
"summary": "2350682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350682"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3091.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Quarkus 3.15 update is now available (RHBQ 3.15.3.SP2)",
"tracking": {
"current_release_date": "2026-05-01T08:51:19+00:00",
"generator": {
"date": "2026-05-01T08:51:19+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.7"
}
},
"id": "RHSA-2025:3091",
"initial_release_date": "2025-03-20T15:47:58+00:00",
"revision_history": [
{
"date": "2025-03-20T15:47:58+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-20T15:47:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-01T08:51:19+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Build of Apache Camel 4.8 for Quarkus 3.15",
"product": {
"name": "Red Hat Build of Apache Camel 4.8 for Quarkus 3.15",
"product_id": "Red Hat Build of Apache Camel 4.8 for Quarkus 3.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:camel_quarkus:3.15"
}
}
}
],
"category": "product_family",
"name": "Red Hat Build of Apache Camel"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27636",
"cwe": {
"id": "CWE-644",
"name": "Improper Neutralization of HTTP Headers for Scripting Syntax"
},
"discovery_date": "2025-03-07T18:53:28.136000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2350682"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Apache Camel. This flaw allows an attacker to bypass filtering via a specially crafted request containing a certain combination of upper and lower case characters due to an issue in the default header filtering mechanism, which blocks headers starting with \"Camel\" or \"camel.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "camel-http: org.apache.camel: bypass of header filters via specially crafted response",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as having Moderate impact because it can only be triggered under certain configurations and does not enable complete takeover of the system. In order to be vulnerable, a system using the Apache Camel Framework must specifically be using the camel-bean component as a producer and the exchange is coming from a http-based consumer, such as HTTP component or platform-http. If exploitation occurs, an attacker could call other methods on that bean already in the classpath, but not from other arbitrary java beans, System.getenv, nor part of JDK itself.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Build of Apache Camel 4.8 for Quarkus 3.15"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27636"
},
{
"category": "external",
"summary": "RHBZ#2350682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350682"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27636"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27636",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27636"
},
{
"category": "external",
"summary": "https://github.com/apache/camel/commit/781491b446921341f87a13824be4f7b5063776fc",
"url": "https://github.com/apache/camel/commit/781491b446921341f87a13824be4f7b5063776fc"
},
{
"category": "external",
"summary": "https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z",
"url": "https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z"
}
],
"release_date": "2025-03-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-03-20T15:47:58+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\nThe References section of this erratum contains a download link (you must log in to download the update).",
"product_ids": [
"Red Hat Build of Apache Camel 4.8 for Quarkus 3.15"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3091"
},
{
"category": "workaround",
"details": "Remove headers from your Camel routes; this can be accomplished in several ways, including globally or per route.",
"product_ids": [
"Red Hat Build of Apache Camel 4.8 for Quarkus 3.15"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Build of Apache Camel 4.8 for Quarkus 3.15"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "camel-http: org.apache.camel: bypass of header filters via specially crafted response"
}
]
}
RHSA-2025:3543
Vulnerability from csaf_redhat - Published: 2025-04-02 20:19 - Updated: 2026-06-05 19:44Summary
Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8.5 for Spring Boot security update.
Severity
Important
Notes
Topic: Red Hat build of Apache Camel 4.8.5 for Spring Boot release and security update is now available.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat build of Apache Camel 4.8.5 for Spring Boot release and security update is now available.
The purpose of this text-only errata is to inform you about the security issues fixed.
Security Fix(es):
* json-smart: Potential DoS via stack exhaustion (incomplete fix for CVE-2023-1370) (CVE-2024-57699)
* io.smallrye/smallrye-fault-tolerance-core: SmallRye Fault Tolerance (CVE-2025-2240)
* spring-security-core: CVE-2025-22228: Spring Security BCryptPasswordEncoder does not enforce maximum password length (CVE-2025-22228)
* io.netty/netty-handler: SslHandler doesn't correctly validate packets which can lead to native crash when using native SSLEngine (CVE-2025-24970)
* org.apache.camel/camel-http: bypass of header filters via specially crafted response (CVE-2025-27636)
* org.apache.camel/camel-http-base: bypass of header filters via specially crafted response (CVE-2025-27636)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the JSON-smart library. In affected versions, specially crafted JSON input may trigger stack exhaustion, potentially leading to an application crash or denial of service. This issue exists due to an incomplete fix for CVE-2023-1370.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat build of Apache Camel 4.8.5 for Spring Boot
Red Hat / Red Hat Build of Apache Camel
|
cpe:/a:redhat:apache_camel_spring_boot:4.8.5
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory (OOM) issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service (DoS) issue.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat build of Apache Camel 4.8.5 for Spring Boot
Red Hat / Red Hat Build of Apache Camel
|
cpe:/a:redhat:apache_camel_spring_boot:4.8.5
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the spring-security-core password encoder. This vulnerability allows incorrect password matching via input manipulation.
7.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat build of Apache Camel 4.8.5 for Spring Boot
Red Hat / Red Hat Build of Apache Camel
|
cpe:/a:redhat:apache_camel_spring_boot:4.8.5
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in Netty's SslHandler. This vulnerability allows a native crash via a specially crafted packet that bypasses proper validation.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat build of Apache Camel 4.8.5 for Spring Boot
Red Hat / Red Hat Build of Apache Camel
|
cpe:/a:redhat:apache_camel_spring_boot:4.8.5
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A vulnerability was found in Apache Camel. This flaw allows an attacker to bypass filtering via a specially crafted request containing a certain combination of upper and lower case characters due to an issue in the default header filtering mechanism, which blocks headers starting with "Camel" or "camel."
6.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat build of Apache Camel 4.8.5 for Spring Boot
Red Hat / Red Hat Build of Apache Camel
|
cpe:/a:redhat:apache_camel_spring_boot:4.8.5
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
36 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat build of Apache Camel 4.8.5 for Spring Boot release and security update is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat build of Apache Camel 4.8.5 for Spring Boot release and security update is now available.\n\nThe purpose of this text-only errata is to inform you about the security issues fixed.\n\nSecurity Fix(es):\n\n* json-smart: Potential DoS via stack exhaustion (incomplete fix for CVE-2023-1370) (CVE-2024-57699)\n\n* io.smallrye/smallrye-fault-tolerance-core: SmallRye Fault Tolerance (CVE-2025-2240)\n\n* spring-security-core: CVE-2025-22228: Spring Security BCryptPasswordEncoder does not enforce maximum password length (CVE-2025-22228)\n\n* io.netty/netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine (CVE-2025-24970)\n\n* org.apache.camel/camel-http: bypass of header filters via specially crafted response (CVE-2025-27636)\n\n* org.apache.camel/camel-http-base: bypass of header filters via specially crafted response (CVE-2025-27636)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3543",
"url": "https://access.redhat.com/errata/RHSA-2025:3543"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2344073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344073"
},
{
"category": "external",
"summary": "2344787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344787"
},
{
"category": "external",
"summary": "2350682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350682"
},
{
"category": "external",
"summary": "2351452",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2351452"
},
{
"category": "external",
"summary": "2353507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2353507"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3543.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8.5 for Spring Boot security update.",
"tracking": {
"current_release_date": "2026-06-05T19:44:36+00:00",
"generator": {
"date": "2026-06-05T19:44:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3543",
"initial_release_date": "2025-04-02T20:19:22+00:00",
"revision_history": [
{
"date": "2025-04-02T20:19:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-02T20:19:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-05T19:44:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat build of Apache Camel 4.8.5 for Spring Boot",
"product": {
"name": "Red Hat build of Apache Camel 4.8.5 for Spring Boot",
"product_id": "Red Hat build of Apache Camel 4.8.5 for Spring Boot",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:apache_camel_spring_boot:4.8.5"
}
}
}
],
"category": "product_family",
"name": "Red Hat Build of Apache Camel"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-57699",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2025-02-05T22:01:26.352808+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2344073"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the JSON-smart library. In affected versions, specially crafted JSON input may trigger stack exhaustion, potentially leading to an application crash or denial of service. This issue exists due to an incomplete fix for CVE-2023-1370.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "json-smart: Potential DoS via stack exhaustion (incomplete fix for CVE-2023-1370)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue exists because of an incomplete fix for CVE-2023-1370, therefore it only affects json-smart v2.5.0 through v2.5.1 (inclusive).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57699"
},
{
"category": "external",
"summary": "RHBZ#2344073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344073"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57699"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57699",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57699"
},
{
"category": "external",
"summary": "https://github.com/TurtleLiu/Vul_PoC/tree/main/CVE-2024-57699",
"url": "https://github.com/TurtleLiu/Vul_PoC/tree/main/CVE-2024-57699"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/cve-2023-1370",
"url": "https://nvd.nist.gov/vuln/detail/cve-2023-1370"
}
],
"release_date": "2025-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-02T20:19:22+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3543"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "json-smart: Potential DoS via stack exhaustion (incomplete fix for CVE-2023-1370)"
},
{
"cve": "CVE-2025-2240",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2025-03-12T02:23:44.660000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2351452"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory (OOM) issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service (DoS) issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "smallrye-fault-tolerance: SmallRye Fault Tolerance",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability allows a remote attacker to cause an out-of-memory issue when calling the metrics URI, resulting in a denial of service. As this flaw can be triggered via the network, it has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-2240"
},
{
"category": "external",
"summary": "RHBZ#2351452",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2351452"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-2240",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2240"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-2240",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-2240"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-gfh6-3pqw-x2j4",
"url": "https://github.com/advisories/GHSA-gfh6-3pqw-x2j4"
}
],
"release_date": "2025-03-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-02T20:19:22+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3543"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "smallrye-fault-tolerance: SmallRye Fault Tolerance"
},
{
"cve": "CVE-2025-22228",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"discovery_date": "2025-03-20T06:00:45.196050+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2353507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the spring-security-core password encoder. This vulnerability allows incorrect password matching via input manipulation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "spring-security-core: Spring Security BCryptPasswordEncoder does not enforce maximum password length",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22228"
},
{
"category": "external",
"summary": "RHBZ#2353507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2353507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22228",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22228"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22228",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22228"
},
{
"category": "external",
"summary": "https://spring.io/security/cve-2025-22228",
"url": "https://spring.io/security/cve-2025-22228"
}
],
"release_date": "2025-03-20T05:49:19.275000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-02T20:19:22+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3543"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "spring-security-core: Spring Security BCryptPasswordEncoder does not enforce maximum password length"
},
{
"cve": "CVE-2025-24970",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2025-02-10T23:00:52.785132+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2344787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty\u0027s SslHandler. This vulnerability allows a native crash via a specially crafted packet that bypasses proper validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "io.netty:netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Netty\u0027s SslHandler is of important severity rather than moderate because it directly impacts the stability and reliability of applications using native SSLEngine. By sending a specially crafted packet, an attacker can trigger a native crash, leading to a complete process termination. Unlike typical moderate vulnerabilities that might cause limited disruptions or require specific conditions, this flaw can be exploited remotely to induce a Denial of Service (DoS), affecting high-availability systems and mission-critical services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-24970"
},
{
"category": "external",
"summary": "RHBZ#2344787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24970",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24970"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/commit/87f40725155b2f89adfde68c7732f97c153676c4",
"url": "https://github.com/netty/netty/commit/87f40725155b2f89adfde68c7732f97c153676c4"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-4g8c-wm8x-jfhw",
"url": "https://github.com/netty/netty/security/advisories/GHSA-4g8c-wm8x-jfhw"
}
],
"release_date": "2025-02-10T21:57:28.730000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-02T20:19:22+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3543"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "io.netty:netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine"
},
{
"cve": "CVE-2025-27636",
"cwe": {
"id": "CWE-644",
"name": "Improper Neutralization of HTTP Headers for Scripting Syntax"
},
"discovery_date": "2025-03-07T18:53:28.136000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2350682"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Apache Camel. This flaw allows an attacker to bypass filtering via a specially crafted request containing a certain combination of upper and lower case characters due to an issue in the default header filtering mechanism, which blocks headers starting with \"Camel\" or \"camel.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "camel-http: org.apache.camel: bypass of header filters via specially crafted response",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as having Moderate impact because it can only be triggered under certain configurations and does not enable complete takeover of the system. In order to be vulnerable, a system using the Apache Camel Framework must specifically be using the camel-bean component as a producer and the exchange is coming from a http-based consumer, such as HTTP component or platform-http. If exploitation occurs, an attacker could call other methods on that bean already in the classpath, but not from other arbitrary java beans, System.getenv, nor part of JDK itself.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27636"
},
{
"category": "external",
"summary": "RHBZ#2350682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350682"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27636"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27636",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27636"
},
{
"category": "external",
"summary": "https://github.com/apache/camel/commit/781491b446921341f87a13824be4f7b5063776fc",
"url": "https://github.com/apache/camel/commit/781491b446921341f87a13824be4f7b5063776fc"
},
{
"category": "external",
"summary": "https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z",
"url": "https://lists.apache.org/thread/l3zcg3vts88bmc7w8172wkgw610y693z"
}
],
"release_date": "2025-03-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-02T20:19:22+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3543"
},
{
"category": "workaround",
"details": "Remove headers from your Camel routes; this can be accomplished in several ways, including globally or per route.",
"product_ids": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat build of Apache Camel 4.8.5 for Spring Boot"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "camel-http: org.apache.camel: bypass of header filters via specially crafted response"
}
]
}
WID-SEC-W-2025-0508
Vulnerability from csaf_certbund - Published: 2025-03-09 23:00 - Updated: 2025-07-03 22:00Summary
Apache Camel: Schwachstelle ermöglicht Manipulation
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Apache Camel ist ein Integrations-Framework, das Enterprise Integration Patterns implementiert.
Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apache Camel ausnutzen, um Daten zu manipulieren.
Betroffene Betriebssysteme: - Linux
- Sonstiges
- UNIX
- Windows
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux Camel for Quarkus
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:camel_for_quarkus
|
Camel for Quarkus | |
|
Apache Camel <3.22.4
Apache / Camel
|
<3.22.4 | ||
|
Red Hat Integration
Red Hat
|
cpe:/a:redhat:integration:-
|
— | |
|
Apache Camel <4.8.5
Apache / Camel
|
<4.8.5 | ||
|
Apache Camel <4.10.2
Apache / Camel
|
<4.10.2 |
References
7 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Apache Camel ist ein Integrations-Framework, das Enterprise Integration Patterns implementiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apache Camel ausnutzen, um Daten zu manipulieren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0508 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0508.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0508 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0508"
},
{
"category": "external",
"summary": "Apache Camel Security Advisory CVE-2025-27636 vom 2025-03-09",
"url": "https://camel.apache.org/security/CVE-2025-27636.html"
},
{
"category": "external",
"summary": "PoC auf GitHub vom 2025-03-10",
"url": "https://github.com/akamai/CVE-2025-27636-Apache-Camel-PoC"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:3091 vom 2025-03-20",
"url": "https://access.redhat.com/errata/RHSA-2025:3091"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:3543 vom 2025-04-02",
"url": "https://access.redhat.com/errata/RHSA-2025:3543"
},
{
"category": "external",
"summary": "PaloAlto Unit42 Report vom 2025-07-03",
"url": "https://unit42.paloaltonetworks.com/apache-cve-2025-24813-cve-2025-27636-cve-2025-29891/"
}
],
"source_lang": "en-US",
"title": "Apache Camel: Schwachstelle erm\u00f6glicht Manipulation",
"tracking": {
"current_release_date": "2025-07-03T22:00:00.000+00:00",
"generator": {
"date": "2025-07-04T05:29:42.279+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-0508",
"initial_release_date": "2025-03-09T23:00:00.000+00:00",
"revision_history": [
{
"date": "2025-03-09T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-03-10T23:00:00.000+00:00",
"number": "2",
"summary": "PoC aufgenommen"
},
{
"date": "2025-03-20T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-04-02T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-07-03T22:00:00.000+00:00",
"number": "5",
"summary": "Schwachstelle wird ausgenutzt"
}
],
"status": "final",
"version": "5"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.10.2",
"product": {
"name": "Apache Camel \u003c4.10.2",
"product_id": "T041662"
}
},
{
"category": "product_version",
"name": "4.10.2",
"product": {
"name": "Apache Camel 4.10.2",
"product_id": "T041662-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:apache:camel:4.10.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c4.8.5",
"product": {
"name": "Apache Camel \u003c4.8.5",
"product_id": "T041663"
}
},
{
"category": "product_version",
"name": "4.8.5",
"product": {
"name": "Apache Camel 4.8.5",
"product_id": "T041663-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:apache:camel:4.8.5"
}
}
},
{
"category": "product_version_range",
"name": "\u003c3.22.4",
"product": {
"name": "Apache Camel \u003c3.22.4",
"product_id": "T041675"
}
},
{
"category": "product_version",
"name": "3.22.4",
"product": {
"name": "Apache Camel 3.22.4",
"product_id": "T041675-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:apache:camel:3.22.4"
}
}
}
],
"category": "product_name",
"name": "Camel"
}
],
"category": "vendor",
"name": "Apache"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "Camel for Quarkus",
"product": {
"name": "Red Hat Enterprise Linux Camel for Quarkus",
"product_id": "T042073",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:camel_for_quarkus"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"category": "product_name",
"name": "Red Hat Integration",
"product": {
"name": "Red Hat Integration",
"product_id": "T033960",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:integration:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27636",
"product_status": {
"known_affected": [
"T042073",
"T041675",
"T033960",
"T041663",
"T041662"
]
},
"release_date": "2025-03-09T23:00:00.000+00:00",
"title": "CVE-2025-27636"
}
]
}
WID-SEC-W-2025-1555
Vulnerability from csaf_certbund - Published: 2025-07-15 22:00 - Updated: 2025-07-15 22:00Summary
Oracle Financial Services Applications: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Oracle Financial Services ist eine Zusammenstellung von Anwendungen für den Finanzsektor und eine Technologiebasis zur Erfüllung von IT- und Geschäftsanforderungen.
Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme: - Linux
- UNIX
- Windows
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 8.1.2.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8
|
8.1.2.8 | |
|
Oracle Financial Services Applications 8.0.8.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.5
|
8.0.8.5 | |
|
Oracle Financial Services Applications 8.0.8.6
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.6
|
8.0.8.6 | |
|
Oracle Financial Services Applications 8.0.7.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.8
|
8.0.7.8 | |
|
Oracle Financial Services Applications 8.1.1.4
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.1.4
|
8.1.1.4 |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=14.7.0.0.0
Oracle / Financial Services Applications
|
<=14.7.0.0.0 |
References
3 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Oracle Financial Services ist eine Zusammenstellung von Anwendungen f\u00fcr den Finanzsektor und eine Technologiebasis zur Erf\u00fcllung von IT- und Gesch\u00e4ftsanforderungen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1555 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1555.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1555 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1555"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update Advisory - July 2025 - Appendix Oracle Financial Services Applications vom 2025-07-15",
"url": "https://www.oracle.com/security-alerts/cpujul2025.html#AppendixIFLX"
}
],
"source_lang": "en-US",
"title": "Oracle Financial Services Applications: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-07-15T22:00:00.000+00:00",
"generator": {
"date": "2025-07-16T08:26:52.542+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1555",
"initial_release_date": "2025-07-15T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-07-15T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "8.0.8",
"product": {
"name": "Oracle Financial Services Applications 8.0.8",
"product_id": "T021677",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.8"
}
}
},
{
"category": "product_version",
"name": "8.0.8.1",
"product": {
"name": "Oracle Financial Services Applications 8.0.8.1",
"product_id": "T022844",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=14.7.0.0.0",
"product": {
"name": "Oracle Financial Services Applications \u003c=14.7.0.0.0",
"product_id": "T028702"
}
},
{
"category": "product_version_range",
"name": "\u003c=14.7.0.0.0",
"product": {
"name": "Oracle Financial Services Applications \u003c=14.7.0.0.0",
"product_id": "T028702-fixed"
}
},
{
"category": "product_version",
"name": "8.1.2.5",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.5",
"product_id": "T028706",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.5"
}
}
},
{
"category": "product_version",
"name": "8.1.2.7",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.7",
"product_id": "T036217",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.7"
}
}
},
{
"category": "product_version",
"name": "8.1.2.8",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.8",
"product_id": "T038392",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.8"
}
}
},
{
"category": "product_version",
"name": "8.0.7.8",
"product": {
"name": "Oracle Financial Services Applications 8.0.7.8",
"product_id": "T040464",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.7.8"
}
}
},
{
"category": "product_version",
"name": "8.0.8.6",
"product": {
"name": "Oracle Financial Services Applications 8.0.8.6",
"product_id": "T040465",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.6"
}
}
},
{
"category": "product_version",
"name": "8.1.1.4",
"product": {
"name": "Oracle Financial Services Applications 8.1.1.4",
"product_id": "T042809",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.1.4"
}
}
},
{
"category": "product_version",
"name": "8.1.2.9",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.9",
"product_id": "T042811",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.9"
}
}
},
{
"category": "product_version",
"name": "8.0.8.5",
"product": {
"name": "Oracle Financial Services Applications 8.0.8.5",
"product_id": "T045382",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.5"
}
}
}
],
"category": "product_name",
"name": "Financial Services Applications"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-38356",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2024-38356"
},
{
"cve": "CVE-2024-56128",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2024-56128"
},
{
"cve": "CVE-2024-57699",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2024-57699"
},
{
"cve": "CVE-2024-7254",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2024-7254"
},
{
"cve": "CVE-2024-8176",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2024-8176"
},
{
"cve": "CVE-2025-23184",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2025-23184"
},
{
"cve": "CVE-2025-24970",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2025-24970"
},
{
"cve": "CVE-2025-27533",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2025-27533"
},
{
"cve": "CVE-2025-27636",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2025-27636"
},
{
"cve": "CVE-2025-27817",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2025-27817"
},
{
"cve": "CVE-2025-48734",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2025-48734"
},
{
"cve": "CVE-2025-53031",
"product_status": {
"known_affected": [
"T021677",
"T022844",
"T028706",
"T036217",
"T042811",
"T038392",
"T045382",
"T040465",
"T040464",
"T042809"
],
"last_affected": [
"T028702"
]
},
"release_date": "2025-07-15T22:00:00.000+00:00",
"title": "CVE-2025-53031"
}
]
}
WID-SEC-W-2026-1204
Vulnerability from csaf_certbund - Published: 2026-04-21 22:00 - Updated: 2026-04-21 22:00Summary
Oracle Financial Services Applications: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Oracle Financial Services ist eine Zusammenstellung von Anwendungen für den Finanzsektor und eine Technologiebasis zur Erfüllung von IT- und Geschäftsanforderungen.
Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme: - Linux
- UNIX
- Windows
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications 12.0.5.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.0.5.0
|
12.0.5.0 | |
|
Oracle Financial Services Applications 12.1.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:12.1.1.0
|
12.1.1.0 | |
|
Oracle Financial Services Applications 11.3.1.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.1.0
|
11.3.1.0 | |
|
Oracle Financial Services Applications 11.3.2.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:11.3.2.0
|
11.3.2.0 | |
|
Oracle Financial Services Applications 8.1.2.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.7
|
8.1.2.7 | |
|
Oracle Financial Services Applications 14.8.2.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.2.0.0
|
14.8.2.0.0 | |
|
Oracle Financial Services Applications 8.1.2.8.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.8.0
|
8.1.2.8.0 | |
|
Oracle Financial Services Applications 8.0.8.7
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.7
|
8.0.8.7 | |
|
Oracle Financial Services Applications 8.0.7.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.7.9
|
8.0.7.9 | |
|
Oracle Financial Services Applications 14.8.1.0.0
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:14.8.1.0.0
|
14.8.1.0.0 | |
|
Oracle Financial Services Applications 8.0.8
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8
|
8.0.8 | |
|
Oracle Financial Services Applications 8.0.8.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.1
|
8.0.8.1 | |
|
Oracle Financial Services Applications 8.1.2.10
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.10
|
8.1.2.10 | |
|
Oracle Financial Services Applications 8.1.2.5
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.5
|
8.1.2.5 | |
|
Oracle Financial Services Applications 8.1.2.9
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.9
|
8.1.2.9 | |
|
Oracle Financial Services Applications 1.0.2.1
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:1.0.2.1
|
1.0.2.1 | |
|
Oracle Financial Services Applications 8.1.2.11
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.1.2.11
|
8.1.2.11 | |
|
Oracle Financial Services Applications 8.0.8.2
Oracle / Financial Services Applications
|
cpe:/a:oracle:financial_services_applications:8.0.8.2
|
8.0.8.2 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Financial Services Applications <=13.0.2
Oracle / Financial Services Applications
|
<=13.0.2 | ||
|
Oracle Financial Services Applications <=14.12.0.0.0
Oracle / Financial Services Applications
|
<=14.12.0.0.0 | ||
|
Oracle Financial Services Applications <=14.8.0.0.0
Oracle / Financial Services Applications
|
<=14.8.0.0.0 |
References
3 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Oracle Financial Services ist eine Zusammenstellung von Anwendungen f\u00fcr den Finanzsektor und eine Technologiebasis zur Erf\u00fcllung von IT- und Gesch\u00e4ftsanforderungen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-1204 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1204.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-1204 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1204"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update Advisory - April 2026 - Appendix Oracle Financial Services Applications vom 2026-04-21",
"url": "https://www.oracle.com/security-alerts/cpuapr2026.html#AppendixIFLX"
}
],
"source_lang": "en-US",
"title": "Oracle Financial Services Applications: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-04-21T22:00:00.000+00:00",
"generator": {
"date": "2026-04-22T08:49:39.227+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2026-1204",
"initial_release_date": "2026-04-21T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-04-21T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "8.0.8",
"product": {
"name": "Oracle Financial Services Applications 8.0.8",
"product_id": "T021677",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.8"
}
}
},
{
"category": "product_version",
"name": "8.0.8.1",
"product": {
"name": "Oracle Financial Services Applications 8.0.8.1",
"product_id": "T022844",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.1"
}
}
},
{
"category": "product_version",
"name": "8.0.8.2",
"product": {
"name": "Oracle Financial Services Applications 8.0.8.2",
"product_id": "T024990",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.2"
}
}
},
{
"category": "product_version",
"name": "8.1.2.5",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.5",
"product_id": "T028706",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.5"
}
}
},
{
"category": "product_version",
"name": "8.1.2.7",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.7",
"product_id": "T036217",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.7"
}
}
},
{
"category": "product_version",
"name": "8.1.2.9",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.9",
"product_id": "T042811",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.9"
}
}
},
{
"category": "product_version",
"name": "8.0.7.9",
"product": {
"name": "Oracle Financial Services Applications 8.0.7.9",
"product_id": "T047907",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.7.9"
}
}
},
{
"category": "product_version",
"name": "8.0.8.7",
"product": {
"name": "Oracle Financial Services Applications 8.0.8.7",
"product_id": "T047908",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=14.8.0.0.0",
"product": {
"name": "Oracle Financial Services Applications \u003c=14.8.0.0.0",
"product_id": "T047909"
}
},
{
"category": "product_version_range",
"name": "\u003c=14.8.0.0.0",
"product": {
"name": "Oracle Financial Services Applications \u003c=14.8.0.0.0",
"product_id": "T047909-fixed"
}
},
{
"category": "product_version",
"name": "8.1.2.10",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.10",
"product_id": "T047910",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.10"
}
}
},
{
"category": "product_version",
"name": "14.8.1.0.0",
"product": {
"name": "Oracle Financial Services Applications 14.8.1.0.0",
"product_id": "T050133",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:14.8.1.0.0"
}
}
},
{
"category": "product_version",
"name": "1.0.2.1",
"product": {
"name": "Oracle Financial Services Applications 1.0.2.1",
"product_id": "T053091",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:1.0.2.1"
}
}
},
{
"category": "product_version",
"name": "8.1.2.11",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.11",
"product_id": "T053092",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.11"
}
}
},
{
"category": "product_version",
"name": "14.8.2.0.0",
"product": {
"name": "Oracle Financial Services Applications 14.8.2.0.0",
"product_id": "T053093",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:14.8.2.0.0"
}
}
},
{
"category": "product_version",
"name": "8.1.2.8.0",
"product": {
"name": "Oracle Financial Services Applications 8.1.2.8.0",
"product_id": "T053094",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.8.0"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=13.0.2",
"product": {
"name": "Oracle Financial Services Applications \u003c=13.0.2",
"product_id": "T053095"
}
},
{
"category": "product_version_range",
"name": "\u003c=13.0.2",
"product": {
"name": "Oracle Financial Services Applications \u003c=13.0.2",
"product_id": "T053095-fixed"
}
},
{
"category": "product_version_range",
"name": "\u003c=14.12.0.0.0",
"product": {
"name": "Oracle Financial Services Applications \u003c=14.12.0.0.0",
"product_id": "T053096"
}
},
{
"category": "product_version_range",
"name": "\u003c=14.12.0.0.0",
"product": {
"name": "Oracle Financial Services Applications \u003c=14.12.0.0.0",
"product_id": "T053096-fixed"
}
},
{
"category": "product_version",
"name": "11.3.1.0",
"product": {
"name": "Oracle Financial Services Applications 11.3.1.0",
"product_id": "T053097",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:11.3.1.0"
}
}
},
{
"category": "product_version",
"name": "11.3.2.0",
"product": {
"name": "Oracle Financial Services Applications 11.3.2.0",
"product_id": "T053098",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:11.3.2.0"
}
}
},
{
"category": "product_version",
"name": "12.0.5.0",
"product": {
"name": "Oracle Financial Services Applications 12.0.5.0",
"product_id": "T053099",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:12.0.5.0"
}
}
},
{
"category": "product_version",
"name": "12.1.1.0",
"product": {
"name": "Oracle Financial Services Applications 12.1.1.0",
"product_id": "T053100",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:financial_services_applications:12.1.1.0"
}
}
}
],
"category": "product_name",
"name": "Financial Services Applications"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28168",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2021-28168"
},
{
"cve": "CVE-2023-20863",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2023-20863"
},
{
"cve": "CVE-2023-34034",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2023-34034"
},
{
"cve": "CVE-2023-44981",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2023-44981"
},
{
"cve": "CVE-2025-12183",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-12183"
},
{
"cve": "CVE-2025-1948",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-1948"
},
{
"cve": "CVE-2025-27636",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-27636"
},
{
"cve": "CVE-2025-27817",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-27817"
},
{
"cve": "CVE-2025-27820",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-27820"
},
{
"cve": "CVE-2025-27821",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-27821"
},
{
"cve": "CVE-2025-41248",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-41248"
},
{
"cve": "CVE-2025-41249",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-41249"
},
{
"cve": "CVE-2025-41254",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-41254"
},
{
"cve": "CVE-2025-46392",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-46392"
},
{
"cve": "CVE-2025-48734",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-48734"
},
{
"cve": "CVE-2025-48924",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-48924"
},
{
"cve": "CVE-2025-48976",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-48976"
},
{
"cve": "CVE-2025-5115",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-5115"
},
{
"cve": "CVE-2025-55163",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-55163"
},
{
"cve": "CVE-2025-58057",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-58057"
},
{
"cve": "CVE-2025-66566",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-66566"
},
{
"cve": "CVE-2025-67735",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-67735"
},
{
"cve": "CVE-2025-68161",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2025-68161"
},
{
"cve": "CVE-2026-22010",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-22010"
},
{
"cve": "CVE-2026-25210",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-25210"
},
{
"cve": "CVE-2026-25990",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-25990"
},
{
"cve": "CVE-2026-34310",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-34310"
},
{
"cve": "CVE-2026-34313",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-34313"
},
{
"cve": "CVE-2026-34314",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-34314"
},
{
"cve": "CVE-2026-34320",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-34320"
},
{
"cve": "CVE-2026-34321",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-34321"
},
{
"cve": "CVE-2026-34325",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-34325"
},
{
"cve": "CVE-2026-35231",
"product_status": {
"known_affected": [
"T053099",
"T053100",
"T053097",
"T053098",
"T036217",
"T053093",
"T053094",
"T047908",
"T047907",
"T050133",
"T021677",
"T022844",
"T047910",
"T028706",
"T042811",
"T053091",
"T053092",
"T024990"
],
"last_affected": [
"T053095",
"T053096",
"T047909"
]
},
"release_date": "2026-04-21T22:00:00.000+00:00",
"title": "CVE-2026-35231"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…