Lucene search
K

125 matches found

CNNVD
CNNVD
added 2024/04/16 12:0 a.m.4 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite E-Business Suite is a fully integrated set of global business management software from Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Complex Maintenanc...

6.1CVSS7.4AI score0.00362EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/16 12:0 a.m.5 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite E-Business Suite is a fully integrated set of global business management software from Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Complex Maintenanc...

6.1CVSS7.4AI score0.00328EPSS
Exploits0References2
NCSC
NCSC
added 2024/01/18 12:0 a.m.37 views

Vulnerabilities fixed in Oracle Supply Chain products

Oracle has fixed vulnerabilities in several Supply Chain products. A malicious party could exploit the vulnerabilities to perform attacks that could result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Access to sensitive data The vulnerabilities have been...

8.8CVSS6.7AI score0.99999EPSS
Exploits20
OSV
OSV
added 2024/01/16 10:15 p.m.3 views

CVE-2024-20942

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle Supply Chain component: LOV. Supported versions that are affected are 11.5, 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.1CVSS7.3AI score0.00168EPSS
Exploits0References1
Prion
Prion
added 2024/01/16 10:15 p.m.12 views

Design/Logic Flaw

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle Supply Chain component: LOV. Supported versions that are affected are 11.5, 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

5.8CVSS6.5AI score0.00168EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/16 9:41 p.m.47 views

CVE-2024-20942

The CVE-2024-20942 vulnerability affects Oracle Complex Maintenance, Repair, and Overhaul (LOV component) in Oracle Supply Chain. Affected versions: 11.5, 12.1, 12.2. The issue arises from insufficient input validation in LOV, allowing a remote attacker with network access via HTTP to compromise ...

6.1CVSS5.8AI score0.00168EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.4 views

Oracle Supply Chain Products Suite Security Vulnerability

Oracle Supply Chain Products Suite is a set of supply chain solutions from Oracle Oracle. The product provides value chain planning, value chain execution, product lifecycle management and other functions. A security vulnerability exists in Oracle Supply Chain's Oracle Complex Maintenance, Repair...

6.1CVSS6.7AI score0.00168EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.4 views

PT-2024-1234 · Oracle · Oracle Complex Maintenance

Name of the Vulnerable Software and Affected Versions: Oracle Complex Maintenance, Repair, and Overhaul versions 11.5 through 12.2 Description: The issue exists due to insufficient input validation in the LOV component of the Oracle Complex Maintenance, Repair, and Overhaul application. This allo...

6.4CVSS6.2AI score0.00168EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.6 views

The vulnerability of the Dialog Box component of the application’s technical maintenance, repair, and major equipment overhauls allows a perpetrator to gain unauthorized access to protected information or to have read, add, or delete privileges over the data.

The vulnerability of the Dialog Box component in application maintenance, repair, and major equipment overhauls related to Oracle Complex Maintenance, Repair, and Overhaul lies in deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain...

8.2CVSS7.7AI score0.01255EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/01/20 3:15 p.m.3 views

CVE-2021-2104

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle Supply Chain component: Dialog Box. Supported versions that are affected are 11.5.10, 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

8.2CVSS7.3AI score0.01255EPSS
Exploits0References1
OSV
OSV
added 2021/01/20 3:15 p.m.5 views

CVE-2021-2102

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle Supply Chain component: Dialog Box. Supported versions that are affected are 11.5.10, 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

8.2CVSS7.3AI score0.01255EPSS
Exploits0References1
Prion
Prion
added 2021/01/20 3:15 p.m.16 views

Design/Logic Flaw

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle Supply Chain component: Dialog Box. Supported versions that are affected are 11.5.10, 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.8CVSS8.3AI score0.01255EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/01/20 3:15 p.m.12 views

Design/Logic Flaw

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle Supply Chain component: Dialog Box. Supported versions that are affected are 11.5.10, 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.8CVSS8.3AI score0.01255EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/01/20 2:50 p.m.8 views

CVE-2021-2102

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle Supply Chain component: Dialog Box. Supported versions that are affected are 11.5.10, 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

8.2CVSS7.3AI score0.01255EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/01/20 2:50 p.m.9 views

CVE-2021-2103

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle Supply Chain component: Dialog Box. Supported versions that are affected are 11.5.10, 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

8.2CVSS7.3AI score0.01255EPSS
Exploits0References1
CVE
CVE
added 2021/01/20 2:50 p.m.50 views

CVE-2021-2103

CVE-2021-2103 affects Oracle’s Complex Maintenance, Repair, and Overhaul (dialog box) in Oracle Supply Chain. Affected versions: 11.5.10, 12.1, 12.2. The issue allows an unauthenticated attacker with network access via HTTP to compromise the system; exploitation requires human interaction. Impact...

8.2CVSS8.3AI score0.01255EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2021/01/20 2:50 p.m.58 views

CVE-2021-2102

The CVE-2021-2102 issue is in Oracle Complex Maintenance, Repair, and Overhaul (Dialog Box) for versions 11.5.10, 12.1, 12.2. It stems from insufficient access control, enabling an unauthenticated, network-accessible attacker (via HTTP) to access or modify data after user interaction. The Red Hat...

8.2CVSS8.3AI score0.01255EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2021/01/20 2:50 p.m.51 views

CVE-2021-2104

The CVE-2021-2104 entry concerns Oracle Complex Maintenance, Repair, and Overhaul (Dialog Box) in Oracle Supply Chain. Affected versions are 11.5.10, 12.1, and 12.2. The issue is a component-level access-control flaw allowing a network-remote, unauthenticated attacker to access or modify data via...

8.2CVSS8.3AI score0.01255EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2021/01/19 12:0 a.m.5 views

PT-2021-1743 · Oracle · Oracle Complex Maintenance

Name of the Vulnerable Software and Affected Versions: Oracle Complex Maintenance, Repair, and Overhaul versions 11.5.10, 12.1, 12.2 Description: The issue is related to insufficient access control in the Dialog Box component of Oracle Complex Maintenance, Repair, and Overhaul. It allows an...

8.2CVSS8.6AI score0.01255EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/01/19 12:0 a.m.6 views

Oracle Supply Chain Security Vulnerability

Oracle Supply Chain Products Suite is a set of supply chain solutions from Oracle Oracle. The product provides value chain planning, value chain execution, product lifecycle management and other functions. A security vulnerability exists in Oracle Supply Chain's Oracle Complex Maintenance, Repair...

8.2CVSS7.3AI score0.01255EPSS
Exploits0References3
Rows per page
Query Builder