Enterprise Communications Broker

enterprise_communications_broker

Vendor: Oracle • 28 CVEs

CVEs (28)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-16864 5Canonical DebianOracle+2 more 11Communications Session Border Controller Debian LinuxEnterprise Communications Broker+8 more Nov 21, 2024 Jan 11, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacke...Show more An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.Show less
CVE-2018-11237 5Canonical GnuNetapp+2 more 10Communications Session Border Controller Data Ontap EdgeElement Software Management+7 more Nov 21, 2024 May 18, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An AVX-512-optimized implementation of the mempcpy function in the GNU C Library (aka glibc or libc6) 2.27 and earlier may write data beyond the target buffer, leading to a buffer overflow in __mempcpy_avx512_no_vzeroupp...Show more An AVX-512-optimized implementation of the mempcpy function in the GNU C Library (aka glibc or libc6) 2.27 and earlier may write data beyond the target buffer, leading to a buffer overflow in __mempcpy_avx512_no_vzeroupper.Show less
CVE-2018-11236 4Gnu NetappOracle+1 more 9Communications Session Border Controller Data Ontap EdgeElement Software Management+6 more Nov 21, 2024 May 18, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 stdlib/canonicalize.c in the GNU C Library (aka glibc or libc6) 2.27 and earlier, when processing very long pathname arguments to the realpath function, could encounter an integer overflow on 32-bit architectures, leadin...Show more stdlib/canonicalize.c in the GNU C Library (aka glibc or libc6) 2.27 and earlier, when processing very long pathname arguments to the realpath function, could encounter an integer overflow on 32-bit architectures, leading to a stack-based buffer overflow and, potentially, arbitrary code execution.Show less
CVE-2018-6485 4Gnu NetappOracle+1 more 15Cloud Backup Communications Session Border ControllerData Ontap Edge+12 more Nov 21, 2024 Feb 1, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An integer overflow in the implementation of the posix_memalign in memalign functions in the GNU C Library (aka glibc or libc6) 2.26 and earlier could cause these functions to return a pointer to a heap area that is too...Show more An integer overflow in the implementation of the posix_memalign in memalign functions in the GNU C Library (aka glibc or libc6) 2.26 and earlier could cause these functions to return a pointer to a heap area that is too small, potentially leading to heap corruption.Show less
CVE-2016-3516 1Oracle 1Enterprise Communications Broker May 6, 2026 Jul 21, 2016 N/A· v4 3.1 LOW· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect confidentiality via vectors relate...Show more Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect confidentiality via vectors related to GUI, a different vulnerability than CVE-2016-3514.Show less
CVE-2016-3515 1Oracle 1Enterprise Communications Broker May 6, 2026 Jul 21, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote attackers to affect confidentiality via unknown vectors.
CVE-2016-3514 1Oracle 1Enterprise Communications Broker May 6, 2026 Jul 21, 2016 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect confidentiality via vectors relate...Show more Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect confidentiality via vectors related to GUI, a different vulnerability than CVE-2016-3516.Show less
CVE-2014-9708 3Embedthis JuniperOracle 3Appweb Enterprise Communications BrokerJunos May 6, 2026 Mar 31, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,".

Previous 12