Mike Arnold

**Name of the Vulnerable Software and Affected Versions** Oracle GoldenGate versions 11.2 through 12.1.2 **Description** The issue is related to an unspecified vulnerability in the Oracle GoldenGate component, which can be exploited by remote attackers to affect confidentiality, integrity, and availability. The vulnerability is associated with coding errors in the Oracle GoldenGate component. Exploitation of this issue may allow a remote attacker to impact the integrity, availability, and confidentiality of information. **Recommendations** For Oracle GoldenGate versions 11.2 through 12.1.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Oracle GoldenGate versions 11.2 through 12.1.2 **Description** The issue is related to an unspecified vulnerability in the Oracle GoldenGate component, which can be exploited by remote attackers to affect confidentiality, integrity, and availability. The vulnerability is associated with coding errors and can be exploited via unknown vectors. **Recommendations** For Oracle GoldenGate versions 11.2 through 12.1.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Oracle GoldenGate versions 11.2 through 12.1.2 **Description** The issue affects the availability of the system, allowing remote attackers to exploit it via unknown vectors. **Recommendations** For Oracle GoldenGate versions 11.2 through 12.1.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SAP Business One versions 6.80.123 through 6.80.320 **Description** The issue is a stack-based buffer overflow in NT Naming Service.exe, allowing remote attackers to execute arbitrary code via a long GIOP request to TCP port 30000. **Recommendations** For versions 6.80.123 through 6.80.320, consider restricting access to TCP port 30000 to minimize the risk of exploitation. As a temporary workaround, limit the length of GIOP requests to prevent buffer overflow until a patch is available.