Possible JS Specific Attack-jQuery UI With Known Vulnerabilities Used (Doc ID 2952630.1)

Last updated on JUNE 05, 2023

Applies to:

Oracle Financial Services Analytical Applications Infrastructure - Version 8.1.2.1 and later
Information in this document applies to any platform.

Goal

Issue - Possible JS specific attack-jQuery UI with known vulnerabilities used.
Abstract - The web application is using a vulnerable jQuery UI 1.12.1 library that is known to have many XSS related issues like CVE-2021-41184, CVE-2021-41183, CVE-2021-41182.
Impact - Attackers could potentially exploit the vulnerability in the JavaScript library. The impact of a successful exploit depends on the nature of the vulnerability and how the web application makes use of the library.

Solution

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

Goal

Solution

References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Possible JS Specific Attack-jQuery UI With Known Vulnerabilities Used (Doc ID 2952630.1)

Applies to:

Goal

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!