Lucene search
K

285 matches found

NCSC
NCSC
added 2024/04/18 12:0 a.m.6 views

Vulnerabilities fixed in Oracle E-Business Suite

Oracle has fixed vulnerabilities in E-Business suite and components. A malicious party could exploit the vulnerabilities to perform Perform cross-site scripting XSS attacks. Such attacks can lead to execution of arbitrary code in the victim's victim's browser, or access sensitive data in the...

9.1CVSS7.3AI score0.00723EPSS
Exploits0
OSV
OSV
added 2024/04/16 10:15 p.m.5 views

CVE-2024-21080

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: REST Services. Supported versions that are affected are 12.2.9-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications...

6.5CVSS7.1AI score0.00509EPSS
Exploits0References1
NVD
NVD
added 2024/04/16 10:15 p.m.23 views

CVE-2024-21080

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: REST Services. Supported versions that are affected are 12.2.9-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications...

6.5CVSS6.4AI score0.00509EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/16 12:0 a.m.5 views

Oracle E-Business Suite 的 Oracle Applications Framework 安全漏洞

Oracle E-Business Suite E-Business Suite and Oracle Applications Framework are both products of Oracle Corporation.Oracle E-Business Suite is a fully integrated global business management software. The software provides customer relationship management, service management, financial management an...

6.5CVSS7.3AI score0.00509EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.10 views

PT-2023-9319 · Oracle · Oracle Applications Framework

Name of the Vulnerable Software and Affected Versions: Oracle Applications Framework versions 12.2.3 through 12.2.13 Description: The issue is related to improper authorization in the Personalization component of Oracle Applications Framework, part of the Oracle E-Business Suite. This can allow a...

5.5CVSS7.3AI score0.00313EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/10/21 12:0 a.m.7 views

The vulnerability of the Personalization component of the Oracle Applications Framework, a software platform for enterprise automation systems in the Oracle E-Business Suite, allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the Personalization component of the Oracle Applications Framework software, which is part of the Oracle E-Business Suite, exists due to insufficient verification of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read,...

6.4CVSS6.3AI score0.00327EPSS
Exploits0References2Affected Software2
NCSC
NCSC
added 2023/10/19 12:0 a.m.6 views

Vulnerabilities fixed in Oracle E-Business Suite

Vulnerabilities have been fixed in Oracle E-Business Suite products. A malicious party could exploit the vulnerabilities to perform attacks that can result in the following categories of damage: Manipulation of data Bypassing authentication Oracle has fixed the vulnerabilities in the following...

6.5CVSS7.1AI score0.0051EPSS
Exploits0
OSV
OSV
added 2023/10/17 10:15 p.m.5 views

CVE-2023-22076

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Personalization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application...

6.1CVSS5.8AI score0.00327EPSS
Exploits0References1
CVE
CVE
added 2023/10/17 9:2 p.m.62 views

CVE-2023-22076

CVE-2023-22076 concerns the Oracle E-Business Suite, specifically the Oracle Applications Framework Personalization component. Affects supported AEF versions 12.2.3–12.2.12. The root cause is an input-validation/logic issue that allows an unauthenticated attacker with HTTP network access to compr...

6.1CVSS5.8AI score0.00327EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/17 12:0 a.m.5 views

PT-2023-6269 · Oracle · Oracle Applications Framework +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.12 Description: The issue is related to insufficient input validation in the Personalization component of the Oracle Applications Framework product. This allows an unauthenticated attacker...

6.4CVSS5.2AI score0.00327EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/10/17 12:0 a.m.6 views

Oracle E-Business Suite Security Vulnerability

Oracle E-Business Suite E-Business Suite and Oracle Applications Framework are the United States Oracle Oracle products. Oracle E-Business Suite is a fully integrated global business management software. The software provides customer relationship management, service management, financial...

6.1CVSS6.7AI score0.00327EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.10 views

The vulnerability of the Diagnostics component of the Oracle Applications Framework software, a system for automating business operations in enterprises under the Oracle E-Business Suite, allows a perpetrator to gain access to and modify data.

The vulnerability of the Diagnostics component of the Oracle Applications Framework software in the Oracle E-Business Suite exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker, operating remotely, to gain access to read, modify, add, or delete dat...

6.4CVSS6.8AI score0.00363EPSS
Exploits0References2Affected Software1
NCSC
NCSC
added 2023/07/19 12:0 a.m.6 views

Vulnerabilities fixed in Oracle E-Business Suite

Vulnerabilities have been fixed in Oracle E-Business Suite products. A malicious party could exploit the vulnerabilities to perform attacks that can result in the following categories of damage: Denial-of-Service DoS Manipulation of data Access to sensitive data Access to system data Oracle has...

6.5CVSS6.9AI score0.00401EPSS
Exploits0
NVD
NVD
added 2023/07/18 9:15 p.m.21 views

CVE-2023-22042

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.3-12.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...

6.1CVSS0.00363EPSS
Exploits0References1
OSV
OSV
added 2023/07/18 9:15 p.m.2 views

CVE-2023-22042

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.3-12.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...

6.1CVSS7.3AI score0.00363EPSS
Exploits0References1
Prion
Prion
added 2023/07/18 9:15 p.m.19 views

Design/Logic Flaw

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.3-12.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...

5.8CVSS5.9AI score0.00363EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/18 8:18 p.m.69 views

CVE-2023-22042

CVE-2023-22042 affects Oracle E-Business Suite, specifically the Diagnostics component of Oracle Applications Framework. Affected versions are 12.2.3–12.3.12. The issue allows an unauthenticated attacker with network access via HTTP to compromise the framework, with human interaction required, po...

6.1CVSS5.8AI score0.00363EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/18 12:0 a.m.3 views

PT-2023-3623 · Oracle · Oracle E-Business Suite +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.3.12 Description: The issue is related to insufficient input validation in the Diagnostics component of the Oracle Applications Framework product. It allows an unauthenticated attacker with...

6.4CVSS5.9AI score0.00363EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/07/18 12:0 a.m.4 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management, and other functions. A security vulnerability exists in the Oracle...

6.1CVSS6.9AI score0.00363EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:46 a.m.5 views

SUSE CVE-2012-3162

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows local users to affect confidentiality, related to MDS loading...

1.7CVSS6.3AI score0.00318EPSS
Exploits0References3
Rows per page
Query Builder