54 matches found
EUVD-2026-24385
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Personalization. Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Application...
CVE-2026-34298
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Personalization. Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Application...
PT-2026-34122
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Personalization. Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Application...
CVE-2021-2023
Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: APIs. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Bas...
CVE-2024-21080
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: REST Services. Supported versions that are affected are 12.2.9-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications...
CVE-2024-21080
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: REST Services. Supported versions that are affected are 12.2.9-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications...
PT-2023-9064 · Oracle · Oracle E-Business Suite
Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.9 through 12.2.13 Description: The issue is related to insufficient input validation in the REST Services component of the Oracle Applications Framework. This can allow a remote attacker to gain...
Code injection
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.9-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...
Oracle Applications Framework 输入验证错误漏洞
Oracle Applications Framework is an MVC-based web development framework from Oracle Corporation. An input validation error vulnerability exists in Oracle Applications Framework component: Diagnostics versions 12.2.9 through 12.2.11, which can be exploited by an attacker to gain web access over...
Vulnerability fixed in Progress OpenEdge
Progress has fixed a vulnerability in OpenEdge. A malicious party could, by exploiting this vulnerability, gain gain root privileges on the vulnerable system. For successful misuse requires authentication on the underlying operating system required. Progress has released updates to fix the...
PT-2022-19875 · Progress · Openedge
Name of the Vulnerable Software and Affected Versions: Progress OpenEdge versions prior to 11.7.14 Progress OpenEdge versions 12.x prior to 12.2.9 Description: The issue concerns certain SUID binaries within the OpenEdge application that were susceptible to privilege escalation. If exploited, a...
CVE-2020-14862
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Internal Operations. Supported versions that are affected are 12.2.3 - 12.2.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Universal...
CVE-2020-14686
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Others. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport...
CVE-2020-14679
Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite component: Preferences. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle CRM...
CVE-2020-14658
Vulnerability in the Oracle Marketing product of Oracle E-Business Suite component: Marketing Administration. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...
CVE-2020-14610
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Attachments / File Upload. The supported version that is affected is 12.2.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2020-14590
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Page Request. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle...
CVE-2020-14610
The CVE-2020-14610 entry describes a vulnerability in Oracle E-Business Suite’s Oracle Applications Framework (OA Framework), specifically in the Attachments / File Upload component. Affected product/version is Oracle E-Business Suite OA Framework with version 12.2.9. The flaw is exploitable over...
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2020-44267)
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. CRM Technical Foundation is one ...
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2020-44271)
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions.Applications Framework OA...