Detections
Analytics
Oracle Application Express (Apex) Unspecified Issues (pre 3.1)
critical Nessus Plugin ID 64716
Language:
Synopsis
The remote host is running a vulnerable version of Oracle Apex.Description
There are unspecified vulnerabilities in the Application Express component of the Oracle Database. The updated version (3.1) contains two security fixes for vulnerabilities of which one is remotely exploitable without authentication.Solution
Upgrade Application Express to at least version 3.1.See Also
http://www.oracle.com/technetwork/developer-tools/apex/index.html
http://www.oracle.com/technetwork/topics/security/cpuapr2008-082075.html
Plugin Details
Severity: Critical
ID: 64716
File Name: oracle_apex_pre31.nasl
Version: 1.4
Type: remote
Family: Web Servers
Published: 2/20/2013
Updated: 6/12/2020
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:oracle:application_express
Required KB Items: Oracle/Apex
Patch Publication Date: 4/16/2008
Vulnerability Publication Date: 4/16/2008