Product:

Jd_edwards_enterpriseone_tools

(Oracle)
Repositories https://github.com/FasterXML/jackson-databind
https://github.com/jquery/jquery
https://github.com/openssl/openssl
#Vulnerabilities 127
Date Id Summary Products Score Patch Annotated
2012-01-18 CVE-2011-3524 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-2325, CVE-2011-2326, and CVE-2011-3509. Jd_edwards_enterpriseone_tools, Jd_edwards_products N/A
2012-01-18 CVE-2011-3514 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect integrity, related to Enterprise Infrastructure SEC (JDENET). Jd_edwards_enterpriseone_tools, Jd_edwards_products N/A
2012-01-18 CVE-2011-3509 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-2325, CVE-2011-2326, and CVE-2011-3524. Jd_edwards_enterpriseone_tools, Jd_edwards_products N/A
2012-01-18 CVE-2011-2326 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-2325, CVE-2011-3509, and CVE-2011-3524. Jd_edwards_enterpriseone_tools, Jd_edwards_products N/A
2012-01-18 CVE-2011-2325 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDENET), a different vulnerability than CVE-2011-2326, CVE-2011-3509, and CVE-2011-3524. Jd_edwards_enterpriseone_tools, Jd_edwards_products N/A
2012-01-18 CVE-2011-2324 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote attackers to affect availability, related to Enterprise Infrastructure SEC (JDENET). Jd_edwards_enterpriseone_tools, Jd_edwards_products N/A
2012-01-18 CVE-2011-2321 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (JDNET). Jd_edwards_enterpriseone_tools, Jd_edwards_products N/A
2012-01-18 CVE-2011-2317 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect integrity, related to Enterprise Infrastucture SEC (JDNET). Jd_edwards_enterpriseone_tools, Jd_edwards_products N/A
2017-05-04 CVE-2017-3730 In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack. Openssl, Agile_engineering_data_management, Communications_application_session_controller, Communications_eagle_lnp_application_processor, Communications_operations_monitor, Jd_edwards_enterpriseone_tools, Jd_edwards_world_security 7.5
2019-04-23 CVE-2019-2564 Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products (subcomponent: Web Runtime). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne Tools. Successful attacks of this vulnerability can result in unauthorized read access to a subset of JD Edwards EnterpriseOne Tools accessible data. CVSS 3.0 Base Score 4.3 (Confidentiality... Jd_edwards_enterpriseone_tools 4.3