4 matches found
Vulnerabilities fixed in Oracle JD Edwards
Vulnerabilities have been fixed in Oracle JD Edwards products. A malicious party could exploit the vulnerabilities to gain access to sensitive data, or to execute arbitrary code with permissions of the application. Oracle has fixed the vulnerabilities in the following products: - JD Edwards...
CVE-2023-22055
...
CVE-2023-22055
...
CVE-2023-22055
CVE-2023-22055 affects Oracle JD Edwards EnterpriseOne Tools, Web Runtime SEC. Vulnerable in versions prior to 9.2.7.4; attacker with network access over HTTP can compromise JD Edwards EnterpriseOne Tools, with attacks requiring user interaction. Consequences include unauthorized updates/inserts/...