Lucene search
+L

285 matches found

Cvelist
Cvelist
added 2021/07/20 10:43 p.m.18 views

CVE-2021-2380

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Attachments / File Upload. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromis...

7.6CVSS8.1AI score0.0069EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/05/12 12:0 a.m.7 views

The vulnerability of the Home Page component of the Oracle Applications Framework allows a perpetrator to gain access to modify, add, or delete data, or to gain full control over the application.

The vulnerability of the Home Page component of the Oracle Applications Framework is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to modify, add, or delete data, or to gain full control over the applicati...

9.4CVSS6.8AI score0.01191EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/04/23 12:0 a.m.94 views

Oracle E-Business Suite Multiple Vulnerabilities (April 2021 CPU)

The version of Oracle E-Business Suite installed on the remote host is affected by multiple vulnerabilities as referenced in the April 2021 CPU advisory. - A vulnerability exists in the Oracle Applications Framework product of Oracle E-Business Suite component: Home page. The supported version th...

9.1CVSS6.6AI score0.92907EPSS
Exploits8References74
OSV
OSV
added 2021/04/22 10:15 p.m.5 views

CVE-2021-2200

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Home page. The supported version that is affected is 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications Framework...

9.1CVSS6.6AI score0.01191EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/04/22 9:53 p.m.14 views

CVE-2021-2200

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Home page. The supported version that is affected is 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications Framework...

9.1CVSS7.1AI score0.01191EPSS
Exploits0References1
CVE
CVE
added 2021/04/22 9:53 p.m.73 views

CVE-2021-2200

CVE-2021-2200 affects Oracle E-Business Suite, specifically the Oracle Applications Framework Home page in version 12.2.10. The vulnerability is described as easily exploitable via unauthenticated HTTP access, enabling an attacker to compromise the Oracle Applications Framework and potentially pe...

9.1CVSS8.5AI score0.01191EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/04/22 9:53 p.m.25 views

CVE-2021-2200

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Home page. The supported version that is affected is 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications Framework...

9.1CVSS8.7AI score0.01191EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/21 12:0 a.m.10 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2021-39954)

Oracle E-Business Suite is in the original Application ERP based on the expansion, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on a variety of management software collection, is seamlessly integrated with a management...

9.1CVSS6.3AI score0.01191EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/20 12:0 a.m.4 views

Oracle Applications Framework 安全漏洞

Oracle E-Business Suite is in the original Application ERP based on the expansion, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on a variety of management software collection, is seamlessly integrated with a management...

9.1CVSS5.6AI score0.01191EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/11/05 12:0 a.m.7 views

The vulnerability of the Page Request component in the Oracle Applications Framework software platform of the Oracle E-Business Suite allows a perpetrator to gain access to modify, add, or delete data.

The vulnerability of the Page Request component in the Oracle Applications Framework software platform of the Oracle E-Business Suite relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to modify, add, or delete data using the HTTP...

5CVSS6.5AI score0.01168EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2020/10/22 12:0 a.m.6 views

Oracle Applications Framework Code Execution Vulnerability

Oracle Applications Framework is the United States Oracle Oracle company's a MVC-based Web development framework. A security vulnerability exists in Oracle Applications Framework product versions 12.1.3, 12.2.3 through 12.2.10, which can be exploited by an attacker accessing Oracle Applications...

5.8CVSS8.9AI score0.01168EPSS
Exploits0References1
NVD
NVD
added 2020/10/21 3:15 p.m.20 views

CVE-2020-14746

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Popup windows. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

5.8CVSS0.01168EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.9 views

CVE-2020-14746

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Popup windows. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

4.7CVSS5.8AI score0.01168EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/21 2:4 p.m.16 views

CVE-2020-14746

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Popup windows. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

4.7CVSS4.5AI score0.01168EPSS
Exploits0References1
CVE
CVE
added 2020/10/21 2:4 p.m.57 views

CVE-2020-14746

CVE-2020-14746 affects Oracle E-Business Suite, Oracle Applications Framework (Popup windows). Vulnerable versions: 12.1.3 and 12.2.3–12.2.10. An unauthenticated attacker with network access over HTTP can exploit this, with user interaction required, to potentially perform unauthorized updates, i...

5.8CVSS4.4AI score0.01168EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/10/21 2:4 p.m.10 views

CVE-2020-14746

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Popup windows. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

4.7CVSS5.7AI score0.01168EPSS
Exploits0References1
NCSC
NCSC
added 2020/10/21 12:0 a.m.9 views

Vulnerabilities fixed in Oracle E-Business Suite

Oracle has fixed vulnerabilities in the following Oracle E-Business Suite products: Applications Manager Marketing Application Object Library Trade Management Universal Work Queue Installed Base CRM Technical Foundation One-to-One Fulfillment Applications Framework E-Business Suite Secure...

10CVSS7.7AI score0.02831EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/09/18 12:0 a.m.5 views

The vulnerability of the Popups component of the Oracle Applications Framework software platform allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Popups component in the Oracle Applications Framework exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, or to gain unauthorized access to protected information...

8.5CVSS7.7AI score0.01432EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/08/12 12:0 a.m.4 views

The vulnerability of the Attachments/File Upload component of the Oracle Applications Framework allows a perpetrator to gain access to modify, add, or delete data.

The vulnerability of the Attachments/File Upload component in the Oracle Applications Framework is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows an attacker to gain access to, modify, add, or delete data using the HTTP protocol...

7.6CVSS7.3AI score0.00929EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/08/12 12:0 a.m.5 views

The vulnerability of the Page Request component in the Oracle Applications Framework software platform allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Page Request component in the Oracle Applications Framework is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

4CVSS6.3AI score0.00968EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder