The Hacker News

NOVEMBER 28, 2022

and impacts Oracle Access Manager (OAM) versions 11.1.2.3.0, Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical flaw impacting Oracle Fusion Middleware to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation. 12.2.1.3.0, and 12.2.1.4.0.

Cybersecurity 88

Cybersecurity 88

Security Affairs

NOVEMBER 29, 2022

It may give the attacker access to OAM server, to create any user with any privileges, or just get code execution in the victim’s server.” .” reads the post published security researcher Nguyen Jang ( Janggggg ) who reported the flaw alongside peterjson. ” Below is the video PoC published by Nguyen Jang.

Hacking 98

Hacking Cybersecurity Information Security 98

Security Affairs

APRIL 16, 2021

“The overlayd daemon handles Overlay OAM packets, such as ping and traceroute, sent to the overlay. Continued receipt and processing of these packets will sustain the partial DoS.” ” reads the security advisory published by the company. The service runs as root by default and listens for UDP connections on port 4789.

Cybersecurity 135

Cybersecurity Hacking Information Security Malware 135