Ofir Hamam

Name of the Vulnerable Software and Affected Versions: Oracle Transportation Management version 6.4.3 Description: The issue allows an unauthenticated attacker with network access via HTTP to compromise Oracle Transportation Management, resulting in unauthorized read access to a subset of accessible data. Recommendations: For Oracle Transportation Management version 6.4.3, update to a version that includes a fix for this issue to prevent unauthorized access.

Name of the Vulnerable Software and Affected Versions: Oracle Transportation Management version 6.4.3 Description: The issue allows a low-privileged attacker with network access via HTTP to compromise Oracle Transportation Management, resulting in unauthorized update, insert, or delete access to some data, as well as unauthorized read access to a subset of data. Recommendations: For Oracle Transportation Management version 6.4.3, update to a version that includes a fix for this issue to prevent unauthorized access to data.

**Name of the Vulnerable Software and Affected Versions** RabbitMQ versions 3.8.x prior to 3.8.7 **Description** The issue allows for arbitrary code execution due to a Windows-specific binary planting security vulnerability. An attacker with write privileges to the RabbitMQ installation directory and local access on Windows could carry out a local binary hijacking attack and execute arbitrary code. **Recommendations** For RabbitMQ versions 3.8.x prior to 3.8.7, update to version 3.8.7 or later to resolve the issue.