threat
engine
.sh
Back
·
··:··
Home
/
Product
/
oracle knowledge
Product
oracle knowledge
13 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2020-2932
>= 8.6.0 and <= 8.6.3
Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). Supported versions tha
5.9
MEDIUM
CVE-2020-2931
>= 8.6.0 and <= 8.6.3
Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Web Applications - InfoCenter). Supported versions t
9.8
CRITICAL
CVE-2020-2795
>= 8.6.0 and <= 8.6.2
Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). Supported versions tha
6.3
MEDIUM
CVE-2020-2791
>= 8.6.0 and <= 8.6.2
Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). Supported versions tha
9.8
CRITICAL
CVE-2020-2553
>= 8.6.0 and <= 8.6.3
Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). Supported versions tha
4.8
MEDIUM
CVE-2020-2524
>= 8.6.0 and <= 8.6.3
Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: InQuira Search). Supported versions that are affecte
5.9
MEDIUM
CVE-2020-2522
all versions
Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). Supported versions tha
4.3
MEDIUM
CVE-2019-0227
>= 8.6.0 and <= 8.6.3
A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Secur
7.5
HIGH
CVE-2019-11358
>= 8.6.0 and <= 8.6.3
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Objec
6.1
MEDIUM
CVE-2018-8032
>= 8.6.0 and <= 8.6.3
Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
6.1
MEDIUM
CVE-2017-2097
<= 1.4.1
Cross-site request forgery (CSRF) vulnerability in Knowledge versions prior to v1.7.0 allows remote attackers to hijack the authen
8.8
HIGH
CVE-2016-3476
all versions
Unspecified vulnerability in the Oracle Knowledge component in Oracle Siebel CRM 8.5.x allows remote attackers to affect confident
6.5
MEDIUM
CVE-2016-3475
all versions
Unspecified vulnerability in the Oracle Knowledge component in Oracle Siebel CRM 8.5.x allows remote authenticated users to affect
4.3
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin