10443 matches found
CVE-2017-10340
Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications subcomponent: Import/Export. Supported versions that are affected are 2.8 and 2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2017-10308
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite subcomponent: Performance. Supported versions that are affected are 9.3.5 and 9.3.6. Easily exploitable vulnerability allows physical access to compromise Oracle Agile PLM. Successful attacks of this vulnerabili...
CVE-2017-10293
Vulnerability in the Java SE component of Oracle Java SE subcomponent: Javadoc. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Java SE. Successful attacks...
CVE-2017-10302
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI. Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI Framework. Successful...
CVE-2017-10277
Vulnerability in the MySQL Connectors component of Oracle MySQL subcomponent: Connector/Net. Supported versions that are affected are 6.9.9 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors...
CVE-2017-10166
Vulnerability in the Oracle Security Service component of Oracle Fusion Middleware subcomponent: C Oracle SSL API. Supported versions that are affected are FMW: 11.1.1.9.0 and 12.1.3.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromis...
CVE-2017-10077
Vulnerability in the Oracle Applications DBA component of Oracle E-Business Suite subcomponent: AD Utilities. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP t...
CVE-2017-10034
Vulnerability in the Oracle BI Publisher component of Oracle Fusion Middleware subcomponent: Core Formatting API. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle ...
CVE-2017-10162
Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM subcomponent: Services. Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server...
Design/Logic Flaw
Vulnerability in the Oracle Common Applications component of Oracle E-Business Suite subcomponent: Gantt Server. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...
Design/Logic Flaw
Vulnerability in the Oracle Business Intelligence Enterprise Edition component of Oracle Fusion Middleware subcomponent: Analytics Web General. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows low privileged attack...
CVE-2017-10060
Vulnerability in the Oracle Business Intelligence Enterprise Edition component of Oracle Fusion Middleware subcomponent: Analytics Web General. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated...
CVE-2017-10066
Vulnerability in the Oracle Applications Technology Stack component of Oracle E-Business Suite subcomponent: Oracle Forms. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network acce...
CVE-2017-10329
CVE-2017-10329 affects Oracle E-Business Suite, specifically the Global Order Promising component’s Reschedule Sales Orders. Affected versions are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. The vulnerability allows an unauthenticated, network-accessible attacker (HTTP) to ...
CVE-2017-10065
Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications subcomponent: Security. Supported versions that are affected are 13.2, 13.3, 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
CVE-2017-10360
CVE-2017-10360 affects Oracle WebCenter Content (Content Server) in Oracle Fusion Middleware for 11.1.1.9.0, 12.2.1.1.0 and 12.2.1.2.0. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Content Server, potentially leading to unauthorized creation, del...
CVE-2017-10414
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: Checkout and Order Placement. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with...
CVE-2017-10372
Vulnerability in the Oracle Hospitality Guest Access component of Oracle Hospitality Applications subcomponent: Base. Supported versions that are affected are 4.2.0 and 4.2.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle...
CVE-2017-10401
CVE-2017-10401 affects Oracle Hospitality Cruise Materials Management, MMSUpdater subcomponent, in Oracle Hospitality Applications (affected version: 7.30.564.0). The vulnerability arises in MMSUpdater and can allow a low-privilege, logged-on attacker to compromise MMS, potentially leading to una...
CVE-2017-10401
Vulnerability in the Oracle Hospitality Cruise Materials Management component of Oracle Hospitality Applications subcomponent: MMSUpdater. The supported version that is affected is 7.30.564.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where...