CVE-2017-5645

In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.

Published : 2017-04-17 21:59 Updated : 2019-06-19 00:15

7.5
CVSS Score More info
Score 7.5 / 10
7.5
Vendor Product Version URI
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:rc1
Apache Log4j 2.7 cpe:/a:apache:log4j:2.7
Apache Log4j 2.8 cpe:/a:apache:log4j:2.8
Apache Log4j 2.5 cpe:/a:apache:log4j:2.5
Apache Log4j 2.6 cpe:/a:apache:log4j:2.6
Apache Log4j 2.3 cpe:/a:apache:log4j:2.3
Apache Log4j 2.4 cpe:/a:apache:log4j:2.4
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta4
Apache Log4j 2.1 cpe:/a:apache:log4j:2.1
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta5
Apache Log4j 2.2 cpe:/a:apache:log4j:2.2
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta6
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta7
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta1
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta2
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta3
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta8
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:beta9
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:rc2
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:alpha2
Apache Log4j 2.0 cpe:/a:apache:log4j:2.0:alpha1
Apache Log4j 2.6.2 cpe:/a:apache:log4j:2.6.2
Apache Log4j 2.6.1 cpe:/a:apache:log4j:2.6.1
Apache Log4j 2.4.1 cpe:/a:apache:log4j:2.4.1
Apache Log4j 2.8.1 cpe:/a:apache:log4j:2.8.1
Apache Log4j 2.0.2 cpe:/a:apache:log4j:2.0.2
Apache Log4j 2.0.1 cpe:/a:apache:log4j:2.0.1
Netapp Oncommand Api Services - cpe:/a:netapp:oncommand_api_services:-
Netapp Oncommand Insight - cpe:/a:netapp:oncommand_insight:-
Netapp Oncommand Workflow Automation - cpe:/a:netapp:oncommand_workflow_automation:-
Netapp Service Level Manager - cpe:/a:netapp:service_level_manager:-
Netapp Snapcenter - cpe:/a:netapp:snapcenter:-
Netapp Storage Automation Store - cpe:/a:netapp:storage_automation_store:-
Oracle Api Gateway 11.1.2.4.0 cpe:/a:oracle:api_gateway:11.1.2.4.0
Oracle Autovue Vuelink Integration 21.0.0 cpe:/a:oracle:autovue_vuelink_integration:21.0.0
Oracle Autovue Vuelink Integration 21.0.1 cpe:/a:oracle:autovue_vuelink_integration:21.0.1
Oracle Banking Platform 2.6.0 cpe:/a:oracle:banking_platform:2.6.0
Oracle Banking Platform 2.6.1 cpe:/a:oracle:banking_platform:2.6.1
Oracle Banking Platform 2.6.2 cpe:/a:oracle:banking_platform:2.6.2
Oracle Bi Publisher 11.1.1.7.0 cpe:/a:oracle:bi_publisher:11.1.1.7.0
Oracle Bi Publisher 11.1.1.9.0 cpe:/a:oracle:bi_publisher:11.1.1.9.0
Oracle Bi Publisher 12.2.1.3.0 cpe:/a:oracle:bi_publisher:12.2.1.3.0
Oracle Bi Publisher 12.2.1.4.0 cpe:/a:oracle:bi_publisher:12.2.1.4.0
Oracle Communications Converged Application Server - Service Controller 6.1 cpe:/a:oracle:communications_converged_application_server_-_service_controller:6.1
Oracle Communications Online Mediation Controller 6.1 cpe:/a:oracle:communications_online_mediation_controller:6.1
Oracle Communications Pricing Design Center 11.1 cpe:/a:oracle:communications_pricing_design_center:11.1
Oracle Communications Pricing Design Center 12.0 cpe:/a:oracle:communications_pricing_design_center:12.0
Oracle Communications Service Broker 6.0 cpe:/a:oracle:communications_service_broker:6.0
Oracle Configuration Manager 12.1.2.0.2 cpe:/a:oracle:configuration_manager:12.1.2.0.2
Oracle Configuration Manager 12.1.2.0.5 cpe:/a:oracle:configuration_manager:12.1.2.0.5
Oracle Enterprise Data Quality 12.2.1.3.0 cpe:/a:oracle:enterprise_data_quality:12.2.1.3.0
Oracle Enterprise Manager Base Platform 12.1.0.5 cpe:/a:oracle:enterprise_manager_base_platform:12.1.0.5
Oracle Enterprise Manager Base Platform 13.2.0.0 cpe:/a:oracle:enterprise_manager_base_platform:13.2.0.0
Oracle Enterprise Manager For Fusion Middleware 12.1.0.5 cpe:/a:oracle:enterprise_manager_for_fusion_middleware:12.1.0.5
Oracle Enterprise Manager For Fusion Middleware 13.2.0.0 cpe:/a:oracle:enterprise_manager_for_fusion_middleware:13.2.0.0
Oracle Enterprise Manager For Mysql Database 13.2.2.0.0 cpe:/a:oracle:enterprise_manager_for_mysql_database:13.2.2.0.0
Oracle Enterprise Manager For Oracle Database 12.1.0.8 cpe:/a:oracle:enterprise_manager_for_oracle_database:12.1.0.8
Oracle Enterprise Manager For Oracle Database 13.2.2 cpe:/a:oracle:enterprise_manager_for_oracle_database:13.2.2
Oracle Enterprise Manager For Peoplesoft 13.1.1.1 cpe:/a:oracle:enterprise_manager_for_peoplesoft:13.1.1.1
Oracle Enterprise Manager For Peoplesoft 13.2.1.1 cpe:/a:oracle:enterprise_manager_for_peoplesoft:13.2.1.1
Oracle Financial Services Analytical Applications Infrastructure 8.0.0.0.0 cpe:/a:oracle:financial_services_analytical_applications_infrastructure:8.0.0.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.1.0.0 cpe:/a:oracle:financial_services_analytical_applications_infrastructure:8.0.1.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2.0.0 cpe:/a:oracle:financial_services_analytical_applications_infrastructure:8.0.2.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.3.0.0 cpe:/a:oracle:financial_services_analytical_applications_infrastructure:8.0.3.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.4.0.0 cpe:/a:oracle:financial_services_analytical_applications_infrastructure:8.0.4.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.5.0.0 cpe:/a:oracle:financial_services_analytical_applications_infrastructure:8.0.5.0.0
Oracle Financial Services Behavior Detection Platform 6.1.1 cpe:/a:oracle:financial_services_behavior_detection_platform:6.1.1
Oracle Financial Services Hedge Management And Ifrs Valuations 8.0.4 cpe:/a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.0.4
Oracle Financial Services Hedge Management And Ifrs Valuations 8.0.5 cpe:/a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.0.5
Oracle Financial Services Loan Loss Forecasting And Provisioning 8.0.4 cpe:/a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.0.4
Oracle Financial Services Loan Loss Forecasting And Provisioning 8.0.5 cpe:/a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.0.5
Oracle Financial Services Profitability Management 6.1.1 cpe:/a:oracle:financial_services_profitability_management:6.1.1
Oracle Financial Services Profitability Management 8.0.0.0.0 cpe:/a:oracle:financial_services_profitability_management:8.0.0.0.0
Oracle Financial Services Profitability Management 8.0.1.0.0 cpe:/a:oracle:financial_services_profitability_management:8.0.1.0.0
Oracle Financial Services Profitability Management 8.0.2.0.0 cpe:/a:oracle:financial_services_profitability_management:8.0.2.0.0
Oracle Financial Services Profitability Management 8.0.3.0.0 cpe:/a:oracle:financial_services_profitability_management:8.0.3.0.0
Oracle Financial Services Profitability Management 8.0.4.0.0 cpe:/a:oracle:financial_services_profitability_management:8.0.4.0.0
Oracle Financial Services Profitability Management 8.0.5.0.0 cpe:/a:oracle:financial_services_profitability_management:8.0.5.0.0
Oracle Flexcube Investor Servicing 12.0.4 cpe:/a:oracle:flexcube_investor_servicing:12.0.4
Oracle Flexcube Investor Servicing 12.1.0 cpe:/a:oracle:flexcube_investor_servicing:12.1.0
Oracle Flexcube Investor Servicing 12.3.0 cpe:/a:oracle:flexcube_investor_servicing:12.3.0
Oracle Flexcube Investor Servicing 12.4.0 cpe:/a:oracle:flexcube_investor_servicing:12.4.0
Oracle Flexcube Investor Servicing 14.0.0 cpe:/a:oracle:flexcube_investor_servicing:14.0.0
Oracle Fusion Middleware Mapviewer 12.2.1.2 cpe:/a:oracle:fusion_middleware_mapviewer:12.2.1.2
Oracle Fusion Middleware Mapviewer 12.2.1.3 cpe:/a:oracle:fusion_middleware_mapviewer:12.2.1.3
Oracle Goldengate Application Adapters 12.3.2.1.1 cpe:/a:oracle:goldengate_application_adapters:12.3.2.1.1
Oracle Identity Analytics 11.1.1.5.8 cpe:/a:oracle:identity_analytics:11.1.1.5.8
Oracle Identity Management Suite 11.1.2.3.0 cpe:/a:oracle:identity_management_suite:11.1.2.3.0
Oracle Identity Management Suite 12.2.1.3.0 cpe:/a:oracle:identity_management_suite:12.2.1.3.0
Oracle Insurance Calculation Engine 10.1.1 cpe:/a:oracle:insurance_calculation_engine:10.1.1
Oracle Insurance Calculation Engine 10.2.1 cpe:/a:oracle:insurance_calculation_engine:10.2.1
Oracle Insurance Policy Administration 10.0 cpe:/a:oracle:insurance_policy_administration:10.0
Oracle Insurance Policy Administration 10.1 cpe:/a:oracle:insurance_policy_administration:10.1
Oracle Insurance Policy Administration 10.2 cpe:/a:oracle:insurance_policy_administration:10.2
Oracle Insurance Policy Administration 11.0 cpe:/a:oracle:insurance_policy_administration:11.0
Oracle Insurance Rules Palette 10.0 cpe:/a:oracle:insurance_rules_palette:10.0
Oracle Insurance Rules Palette 10.1 cpe:/a:oracle:insurance_rules_palette:10.1
Oracle Insurance Rules Palette 10.2 cpe:/a:oracle:insurance_rules_palette:10.2
Oracle Insurance Rules Palette 11.0 cpe:/a:oracle:insurance_rules_palette:11.0
Oracle Insurance Rules Palette 11.1 cpe:/a:oracle:insurance_rules_palette:11.1
Oracle Jd Edwards Enterpriseone Tools 9.2 cpe:/a:oracle:jd_edwards_enterpriseone_tools:9.2
Oracle Jdeveloper 11.1.1.9.0 cpe:/a:oracle:jdeveloper:11.1.1.9.0
Oracle Jdeveloper 12.1.3.0.0 cpe:/a:oracle:jdeveloper:12.1.3.0.0
Oracle Jdeveloper 12.2.1.3.0 cpe:/a:oracle:jdeveloper:12.2.1.3.0
Oracle Peoplesoft Enterprise Fin Install 9.2 cpe:/a:oracle:peoplesoft_enterprise_fin_install:9.2
Oracle Policy Automation 10.4.7 cpe:/a:oracle:policy_automation:10.4.7
Oracle Policy Automation 12.1.0 cpe:/a:oracle:policy_automation:12.1.0
Oracle Policy Automation 12.1.1 cpe:/a:oracle:policy_automation:12.1.1
Oracle Policy Automation 12.2.0 cpe:/a:oracle:policy_automation:12.2.0
Oracle Policy Automation 12.2.1 cpe:/a:oracle:policy_automation:12.2.1
Oracle Policy Automation 12.2.2 cpe:/a:oracle:policy_automation:12.2.2
Oracle Policy Automation 12.2.3 cpe:/a:oracle:policy_automation:12.2.3
Oracle Policy Automation 12.2.4 cpe:/a:oracle:policy_automation:12.2.4
Oracle Policy Automation 12.2.5 cpe:/a:oracle:policy_automation:12.2.5
Oracle Policy Automation 12.2.6 cpe:/a:oracle:policy_automation:12.2.6
Oracle Policy Automation 12.2.7 cpe:/a:oracle:policy_automation:12.2.7
Oracle Policy Automation 12.2.8 cpe:/a:oracle:policy_automation:12.2.8
Oracle Policy Automation 12.2.9 cpe:/a:oracle:policy_automation:12.2.9
Oracle Policy Automation 12.2.10 cpe:/a:oracle:policy_automation:12.2.10
Oracle Policy Automation Connector For Siebel 10.4.6 cpe:/a:oracle:policy_automation_connector_for_siebel:10.4.6
Oracle Policy Automation For Mobile Devices 10.4.7 cpe:/a:oracle:policy_automation_for_mobile_devices:10.4.7
Oracle Policy Automation For Mobile Devices 12.1.0 cpe:/a:oracle:policy_automation_for_mobile_devices:12.1.0
Oracle Policy Automation For Mobile Devices 12.1.1 cpe:/a:oracle:policy_automation_for_mobile_devices:12.1.1
Oracle Policy Automation For Mobile Devices 12.2.0 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.0
Oracle Policy Automation For Mobile Devices 12.2.1 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.1
Oracle Policy Automation For Mobile Devices 12.2.2 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.2
Oracle Policy Automation For Mobile Devices 12.2.3 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.3
Oracle Policy Automation For Mobile Devices 12.2.4 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.4
Oracle Policy Automation For Mobile Devices 12.2.5 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.5
Oracle Policy Automation For Mobile Devices 12.2.6 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.6
Oracle Policy Automation For Mobile Devices 12.2.7 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.7
Oracle Policy Automation For Mobile Devices 12.2.8 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.8
Oracle Policy Automation For Mobile Devices 12.2.9 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.9
Oracle Policy Automation For Mobile Devices 12.2.10 cpe:/a:oracle:policy_automation_for_mobile_devices:12.2.10
Oracle Retail Clearance Optimization Engine 14.0.5 cpe:/a:oracle:retail_clearance_optimization_engine:14.0.5
Oracle Retail Extract Transform And Load 13.0 cpe:/a:oracle:retail_extract_transform_and_load:13.0
Oracle Retail Extract Transform And Load 13.1 cpe:/a:oracle:retail_extract_transform_and_load:13.1
Oracle Retail Extract Transform And Load 13.2 cpe:/a:oracle:retail_extract_transform_and_load:13.2
Oracle Retail Integration Bus 14.0.0 cpe:/a:oracle:retail_integration_bus:14.0.0
Oracle Retail Integration Bus 14.1.0 cpe:/a:oracle:retail_integration_bus:14.1.0
Oracle Retail Integration Bus 15.0 cpe:/a:oracle:retail_integration_bus:15.0
Oracle Retail Integration Bus 16.0 cpe:/a:oracle:retail_integration_bus:16.0
Oracle Retail Open Commerce Platform 5.3.0 cpe:/a:oracle:retail_open_commerce_platform:5.3.0
Oracle Retail Open Commerce Platform 6.0.0 cpe:/a:oracle:retail_open_commerce_platform:6.0.0
Oracle Retail Open Commerce Platform 6.0.1 cpe:/a:oracle:retail_open_commerce_platform:6.0.1
Oracle Retail Predictive Application Server 15.0.3 cpe:/a:oracle:retail_predictive_application_server:15.0.3
Oracle Siebel Ui Framework 18.7 cpe:/a:oracle:siebel_ui_framework:18.7
Oracle Siebel Ui Framework 18.8 cpe:/a:oracle:siebel_ui_framework:18.8
Oracle Siebel Ui Framework 18.9 cpe:/a:oracle:siebel_ui_framework:18.9
Oracle Soa Suite 12.1.3.0.0 cpe:/a:oracle:soa_suite:12.1.3.0.0
Oracle Soa Suite 12.2.2.0.0 cpe:/a:oracle:soa_suite:12.2.2.0.0
Oracle Tape Library Acsls 8.4 cpe:/a:oracle:tape_library_acsls:8.4
Oracle Utilities Work And Asset Management 1.9.1.2.12 cpe:/a:oracle:utilities_work_and_asset_management:1.9.1.2.12
Redhat Enterprise Linux 6.0 cpe:/o:redhat:enterprise_linux:6.0
Redhat Enterprise Linux 6.7 cpe:/o:redhat:enterprise_linux:6.7
Redhat Enterprise Linux 7.0 cpe:/o:redhat:enterprise_linux:7.0
Redhat Enterprise Linux 7.3 cpe:/o:redhat:enterprise_linux:7.3
Redhat Enterprise Linux 7.4 cpe:/o:redhat:enterprise_linux:7.4
Redhat Enterprise Linux 7.5 cpe:/o:redhat:enterprise_linux:7.5
Redhat Enterprise Linux 7.6 cpe:/o:redhat:enterprise_linux:7.6
Redhat Enterprise Linux Desktop 7.0 cpe:/o:redhat:enterprise_linux_desktop:7.0
Redhat Enterprise Linux Server 7.0 cpe:/o:redhat:enterprise_linux_server:7.0
Redhat Enterprise Linux Server Aus 7.4 cpe:/o:redhat:enterprise_linux_server_aus:7.4
Redhat Enterprise Linux Server Aus 7.6 cpe:/o:redhat:enterprise_linux_server_aus:7.6
Redhat Enterprise Linux Server Eus 7.4 cpe:/o:redhat:enterprise_linux_server_eus:7.4
Redhat Enterprise Linux Server Eus 7.5 cpe:/o:redhat:enterprise_linux_server_eus:7.5
Redhat Enterprise Linux Server Eus 7.6 cpe:/o:redhat:enterprise_linux_server_eus:7.6
Redhat Enterprise Linux Server Tus 7.4 cpe:/o:redhat:enterprise_linux_server_tus:7.4
Redhat Enterprise Linux Server Tus 7.6 cpe:/o:redhat:enterprise_linux_server_tus:7.6
Redhat Enterprise Linux Workstation 7.0 cpe:/o:redhat:enterprise_linux_workstation:7.0
Oracle Communications Messaging Server 6.3 cpe:/a:oracle:communications_messaging_server:6.3
Oracle Communications Messaging Server 7.0 cpe:/a:oracle:communications_messaging_server:7.0
Oracle Communications Messaging Server 7.0.5 cpe:/a:oracle:communications_messaging_server:7.0.5
Oracle Communications Messaging Server 8.0 cpe:/a:oracle:communications_messaging_server:8.0
Oracle Mysql Enterprise Monitor 3.4.2.4181 cpe:/a:oracle:mysql_enterprise_monitor:3.4.2.4181
  1. Apache (1) Search CVE
    1. Log4j (15) Search CVE
      1. 2.0
      2. 2.7
      3. 2.8
      4. 2.5
      5. 2.6
      6. 2.3
      7. 2.4
      8. 2.1
      9. 2.2
      10. 2.6.2
      11. 2.6.1
      12. 2.4.1
      13. 2.8.1
      14. 2.0.2
      15. 2.0.1
  2. Oracle (45) Search CVE
    1. Policy Automation Connector For Siebel (1) Search CVE
      1. 10.4.6
    2. Bi Publisher (4) Search CVE
      1. 11.1.1.7.0
      2. 11.1.1.9.0
      3. 12.2.1.3.0
      4. 12.2.1.4.0
    3. Insurance Calculation Engine (2) Search CVE
      1. 10.1.1
      2. 10.2.1
    4. Identity Analytics (1) Search CVE
      1. 11.1.1.5.8
    5. Enterprise Data Quality (1) Search CVE
      1. 12.2.1.3.0
    6. Insurance Policy Administration (4) Search CVE
      1. 10.0
      2. 10.1
      3. 10.2
      4. 11.0
    7. Financial Services Loan Loss Forecasting And Provisioning (2) Search CVE
      1. 8.0.4
      2. 8.0.5
    8. Banking Platform (3) Search CVE
      1. 2.6.0
      2. 2.6.1
      3. 2.6.2
    9. Enterprise Manager Base Platform (2) Search CVE
      1. 12.1.0.5
      2. 13.2.0.0
    10. Retail Open Commerce Platform (3) Search CVE
      1. 5.3.0
      2. 6.0.0
      3. 6.0.1
    11. Communications Service Broker (1) Search CVE
      1. 6.0
    12. Retail Integration Bus (4) Search CVE
      1. 14.0.0
      2. 14.1.0
      3. 15.0
      4. 16.0
    13. Siebel Ui Framework (3) Search CVE
      1. 18.7
      2. 18.8
      3. 18.9
    14. Policy Automation For Mobile Devices (14) Search CVE
      1. 10.4.7
      2. 12.1.0
      3. 12.1.1
      4. 12.2.0
      5. 12.2.1
      6. 12.2.2
      7. 12.2.3
      8. 12.2.4
      9. 12.2.5
      10. 12.2.6
      11. 12.2.7
      12. 12.2.8
      13. 12.2.9
      14. 12.2.10
    15. Identity Management Suite (2) Search CVE
      1. 11.1.2.3.0
      2. 12.2.1.3.0
    16. Enterprise Manager For Oracle Database (2) Search CVE
      1. 12.1.0.8
      2. 13.2.2
    17. Goldengate Application Adapters (1) Search CVE
      1. 12.3.2.1.1
    18. Soa Suite (2) Search CVE
      1. 12.1.3.0.0
      2. 12.2.2.0.0
    19. Financial Services Behavior Detection Platform (1) Search CVE
      1. 6.1.1
    20. Enterprise Manager For Mysql Database (1) Search CVE
      1. 13.2.2.0.0
    21. Mysql Enterprise Monitor (1) Search CVE
      1. 3.4.2.4181
    22. Autovue Vuelink Integration (2) Search CVE
      1. 21.0.0
      2. 21.0.1
    23. Retail Predictive Application Server (1) Search CVE
      1. 15.0.3
    24. Configuration Manager (2) Search CVE
      1. 12.1.2.0.2
      2. 12.1.2.0.5
    25. Policy Automation (14) Search CVE
      1. 10.4.7
      2. 12.1.0
      3. 12.1.1
      4. 12.2.0
      5. 12.2.1
      6. 12.2.2
      7. 12.2.3
      8. 12.2.4
      9. 12.2.5
      10. 12.2.6
      11. 12.2.7
      12. 12.2.8
      13. 12.2.9
      14. 12.2.10
    26. Insurance Rules Palette (5) Search CVE
      1. 10.0
      2. 10.1
      3. 10.2
      4. 11.0
      5. 11.1
    27. Fusion Middleware Mapviewer (2) Search CVE
      1. 12.2.1.2
      2. 12.2.1.3
    28. Jdeveloper (3) Search CVE
      1. 11.1.1.9.0
      2. 12.1.3.0.0
      3. 12.2.1.3.0
    29. Communications Online Mediation Controller (1) Search CVE
      1. 6.1
    30. Financial Services Hedge Management And Ifrs Valuations (2) Search CVE
      1. 8.0.4
      2. 8.0.5
    31. Financial Services Analytical Applications Infrastructure (6) Search CVE
      1. 8.0.0.0.0
      2. 8.0.1.0.0
      3. 8.0.2.0.0
      4. 8.0.3.0.0
      5. 8.0.4.0.0
      6. 8.0.5.0.0
    32. Financial Services Profitability Management (7) Search CVE
      1. 6.1.1
      2. 8.0.0.0.0
      3. 8.0.1.0.0
      4. 8.0.2.0.0
      5. 8.0.3.0.0
      6. 8.0.4.0.0
      7. 8.0.5.0.0
    33. Enterprise Manager For Fusion Middleware (2) Search CVE
      1. 12.1.0.5
      2. 13.2.0.0
    34. Tape Library Acsls (1) Search CVE
      1. 8.4
    35. Communications Messaging Server (4) Search CVE
      1. 6.3
      2. 7.0
      3. 7.0.5
      4. 8.0
    36. Flexcube Investor Servicing (5) Search CVE
      1. 12.0.4
      2. 12.1.0
      3. 12.3.0
      4. 12.4.0
      5. 14.0.0
    37. Retail Extract Transform And Load (3) Search CVE
      1. 13.0
      2. 13.1
      3. 13.2
    38. Communications Converged Application Server - Service Controller (1) Search CVE
      1. 6.1
    39. Communications Pricing Design Center (2) Search CVE
      1. 11.1
      2. 12.0
    40. Api Gateway (1) Search CVE
      1. 11.1.2.4.0
    41. Retail Clearance Optimization Engine (1) Search CVE
      1. 14.0.5
    42. Jd Edwards Enterpriseone Tools (1) Search CVE
      1. 9.2
    43. Peoplesoft Enterprise Fin Install (1) Search CVE
      1. 9.2
    44. Utilities Work And Asset Management (1) Search CVE
      1. 1.9.1.2.12
    45. Enterprise Manager For Peoplesoft (2) Search CVE
      1. 13.1.1.1
      2. 13.2.1.1
  3. Netapp (6) Search CVE
    1. Oncommand Insight (1) Search CVE
      1. -
    2. Service Level Manager (1) Search CVE
      1. -
    3. Oncommand Api Services (1) Search CVE
      1. -
    4. Oncommand Workflow Automation (1) Search CVE
      1. -
    5. Storage Automation Store (1) Search CVE
      1. -
    6. Snapcenter (1) Search CVE
      1. -
  4. Redhat (7) Search CVE
    1. Enterprise Linux (7) Search CVE
      1. 6.0
      2. 6.7
      3. 7.0
      4. 7.3
      5. 7.4
      6. 7.5
      7. 7.6
    2. Enterprise Linux Workstation (1) Search CVE
      1. 7.0
    3. Enterprise Linux Server Tus (2) Search CVE
      1. 7.4
      2. 7.6
    4. Enterprise Linux Server (1) Search CVE
      1. 7.0
    5. Enterprise Linux Desktop (1) Search CVE
      1. 7.0
    6. Enterprise Linux Server Aus (2) Search CVE
      1. 7.4
      2. 7.6
    7. Enterprise Linux Server Eus (3) Search CVE
      1. 7.4
      2. 7.5
      3. 7.6

CWE

ID Name Description Links
CWE-502 Deserialization of Untrusted Data The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid. CVE

References

Source Link
CONFIRM https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
MISC https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
REDHAT https://access.redhat.com/errata/RHSA-2019:1545
BID http://www.securityfocus.com/bid/97702
CONFIRM https://issues.apache.org/jira/browse/LOG4J2-1863
REDHAT https://access.redhat.com/errata/RHSA-2017:3244
REDHAT https://access.redhat.com/errata/RHSA-2017:2888
REDHAT https://access.redhat.com/errata/RHSA-2017:2889
REDHAT https://access.redhat.com/errata/RHSA-2017:2808
REDHAT https://access.redhat.com/errata/RHSA-2017:2811
REDHAT https://access.redhat.com/errata/RHSA-2017:2809
REDHAT https://access.redhat.com/errata/RHSA-2017:2810
REDHAT https://access.redhat.com/errata/RHSA-2017:3400
REDHAT https://access.redhat.com/errata/RHSA-2017:3399
REDHAT https://access.redhat.com/errata/RHSA-2017:2635
REDHAT https://access.redhat.com/errata/RHSA-2017:2636
REDHAT https://access.redhat.com/errata/RHSA-2017:2633
REDHAT https://access.redhat.com/errata/RHSA-2017:2638
REDHAT https://access.redhat.com/errata/RHSA-2017:2637
REDHAT https://access.redhat.com/errata/RHSA-2017:1801
REDHAT https://access.redhat.com/errata/RHSA-2017:1802
REDHAT https://access.redhat.com/errata/RHSA-2017:1417
REDHAT https://access.redhat.com/errata/RHSA-2017:2423
SECTRACK http://www.securitytracker.com/id/1040200
CONFIRM http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
CONFIRM http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
CONFIRM http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
SECTRACK http://www.securitytracker.com/id/1041294
CONFIRM https://security.netapp.com/advisory/ntap-20180726-0002/
CONFIRM http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
CONFIRM https://security.netapp.com/advisory/ntap-20181107-0002/

History of changes

Date Event
2019-06-19 00:15
2019-04-25 13:55
2019-04-23 19:30
2019-01-16 19:29
2018-11-08 11:29
2018-10-17 01:30
2018-07-28 01:29
2018-07-19 01:29
2018-04-20 01:29
2018-01-18 18:18
2018-01-18 02:29
2018-01-05 02:31
2017-12-31 02:29
2017-12-09 02:29
2017-12-08 02:29
2017-12-02 02:29
2017-04-17 21:59

New CVE