Fallos del tipo CWE-284

4431 resultados
CVE-2026-35323CRITICALVulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server). Supported versions that are EPSS 0.4%CVE-2026-35316CRITICALVulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server). Supported versions that are EPSS 0.4%CVE-2026-35313CRITICALVulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Authentication Engine). Supported versions that EPSS 0.4%CVE-2026-46838CRITICALVulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component: Security Framework). Supported versions that aEPSS 0.4%CVE-2026-35283CRITICALVulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware (component: Client Bundle). Supported versionsEPSS 0.4%CVE-2026-35321CRITICALVulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server). Supported versions that are EPSS 0.4%CVE-2026-46847CRITICALVulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component: Runtime Tools). Supported versions that are afEPSS 0.4%CVE-2024-5687MEDIUMIf a specific sequence of actions is performed when opening a new tab, the triggering principal associated with the new tab may have been inEPSS 0.4%CVE-2024-13144MEDIUMzhenfeng13 My-Blog BlogController.java uploadFileByEditomd unrestricted uploadEPSS 0.4%CVE-2022-45164MEDIUMAn issue was discovered in Archibus Web Central 2022.03.01.107. A service exposed by the application allows a basic user to cancel (delete) EPSS 0.4%CVE-2026-46895CRITICALVulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite (component: Core). Supported versions thEPSS 0.4%CVE-2026-46933CRITICALVulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: Internal Operations). Supported versions thEPSS 0.4%CVE-2026-46918CRITICALVulnerability in the Oracle Process Manufacturing Product Development product of Oracle E-Business Suite (component: Internal Operations). EPSS 0.4%CVE-2026-35285CRITICALVulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware (component: Client Bundle). Supported versionsEPSS 0.4%CVE-2026-46832CRITICALVulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Discovery Framework). SupportEPSS 0.4%CVE-2026-26418HIGHMissing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 allows remote attackers to accEPSS 0.4%CVE-2026-9349MEDIUMcalcom cal.diy Generic React API bookings-single-view.getServerSideProps.tsx getServerSideProps information disclosureEPSS 0.4%CVE-2025-20366MEDIUMImproper Access Control in Background Job Submission in Splunk EnterpriseEPSS 0.4%CVE-2025-11508MEDIUMcode-projects Voting System voters_add.php unrestricted uploadEPSS 0.4%CVE-2025-25617MEDIUMIncorrect Access Control in Unifiedtransform 2.X leads to Privilege Escalation allowing teachers to create syllabus.EPSS 0.4%