285 matches found
Vulnerabilities fixed in Oracle E-Business Suite
Oracle has fixed vulnerabilities in E-Business suite and components. A malicious party could exploit the vulnerabilities to perform Perform cross-site scripting XSS attacks. Such attacks can lead to execution of arbitrary code in the victim's victim's browser, or access sensitive data in the...
CVE-2024-21080
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: REST Services. Supported versions that are affected are 12.2.9-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications...
CVE-2024-21080
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: REST Services. Supported versions that are affected are 12.2.9-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications...
Oracle E-Business Suite 的 Oracle Applications Framework 安全漏洞
Oracle E-Business Suite E-Business Suite and Oracle Applications Framework are both products of Oracle Corporation.Oracle E-Business Suite is a fully integrated global business management software. The software provides customer relationship management, service management, financial management an...
PT-2023-9319 · Oracle · Oracle Applications Framework
Name of the Vulnerable Software and Affected Versions: Oracle Applications Framework versions 12.2.3 through 12.2.13 Description: The issue is related to improper authorization in the Personalization component of Oracle Applications Framework, part of the Oracle E-Business Suite. This can allow a...
The vulnerability of the Personalization component of the Oracle Applications Framework, a software platform for enterprise automation systems in the Oracle E-Business Suite, allows a perpetrator to gain access to read, modify, add, or delete data.
The vulnerability of the Personalization component of the Oracle Applications Framework software, which is part of the Oracle E-Business Suite, exists due to insufficient verification of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read,...
Vulnerabilities fixed in Oracle E-Business Suite
Vulnerabilities have been fixed in Oracle E-Business Suite products. A malicious party could exploit the vulnerabilities to perform attacks that can result in the following categories of damage: Manipulation of data Bypassing authentication Oracle has fixed the vulnerabilities in the following...
CVE-2023-22076
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Personalization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application...
CVE-2023-22076
CVE-2023-22076 concerns the Oracle E-Business Suite, specifically the Oracle Applications Framework Personalization component. Affects supported AEF versions 12.2.3–12.2.12. The root cause is an input-validation/logic issue that allows an unauthenticated attacker with HTTP network access to compr...
PT-2023-6269 · Oracle · Oracle Applications Framework +1
Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.12 Description: The issue is related to insufficient input validation in the Personalization component of the Oracle Applications Framework product. This allows an unauthenticated attacker...
Oracle E-Business Suite Security Vulnerability
Oracle E-Business Suite E-Business Suite and Oracle Applications Framework are the United States Oracle Oracle products. Oracle E-Business Suite is a fully integrated global business management software. The software provides customer relationship management, service management, financial...
The vulnerability of the Diagnostics component of the Oracle Applications Framework software, a system for automating business operations in enterprises under the Oracle E-Business Suite, allows a perpetrator to gain access to and modify data.
The vulnerability of the Diagnostics component of the Oracle Applications Framework software in the Oracle E-Business Suite exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker, operating remotely, to gain access to read, modify, add, or delete dat...
Vulnerabilities fixed in Oracle E-Business Suite
Vulnerabilities have been fixed in Oracle E-Business Suite products. A malicious party could exploit the vulnerabilities to perform attacks that can result in the following categories of damage: Denial-of-Service DoS Manipulation of data Access to sensitive data Access to system data Oracle has...
CVE-2023-22042
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.3-12.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...
CVE-2023-22042
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.3-12.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...
Design/Logic Flaw
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.3-12.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...
CVE-2023-22042
CVE-2023-22042 affects Oracle E-Business Suite, specifically the Diagnostics component of Oracle Applications Framework. Affected versions are 12.2.3–12.3.12. The issue allows an unauthenticated attacker with network access via HTTP to compromise the framework, with human interaction required, po...
PT-2023-3623 · Oracle · Oracle E-Business Suite +1
Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.3.12 Description: The issue is related to insufficient input validation in the Diagnostics component of the Oracle Applications Framework product. It allows an unauthenticated attacker with...
Oracle E-Business Suite 安全漏洞
Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management, and other functions. A security vulnerability exists in the Oracle...
SUSE CVE-2012-3162
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows local users to affect confidentiality, related to MDS loading...