← Back

Exalogic Infrastructure

exalogic_infrastructure

Vendor: Oracle • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2015-7547
10Canonical
DebianF5+7 more
30Big Ip Access Policy Manager
Big Ip Advanced Firewall ManagerBig Ip Analytics+27 more
May 6, 2026
Feb 18, 2016
N/A· v4
8.1 HIGH· v3
6.8 MEDIUM· v2
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash...Show more
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.Show less
CVE-2015-3197
2Openssl
Oracle
6Exalogic Infrastructure
OpensslOss Support Tools+3 more
May 6, 2026
Feb 15, 2016
N/A· v4
5.9 MEDIUM· v3
4.3 MEDIUM· v2
ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by perfor...Show more
ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions.Show less
CVE-2015-3195
9Apple
CanonicalDebian+6 more
25Api Gateway
Communications Webrtc Session ControllerDebian Linux+22 more
May 6, 2026
Dec 6, 2015
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which...Show more
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.Show less
CVE-2015-0235
7Apple
DebianGnu+4 more
18Communications Application Session Controller
Communications Eagle Application ProcessorCommunications Eagle Lnp Application Processor+15 more
May 6, 2026
Jan 28, 2015
N/A· v4
N/A· v3
10.0 HIGH· v2
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostb...Show more
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."Show less