163 matches found
CVE-2017-10257
Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub component of Oracle PeopleSoft Products subcomponent: Browse Folder Hierarchy. The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...
CVE-2017-10217
Vulnerability in the Oracle Hospitality Guest Access component of Oracle Hospitality Applications subcomponent: Base. Supported versions that are affected are 4.2.0.0 and 4.2.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2017-10174
Vulnerability in the Oracle iSupport component of Oracle E-Business Suite subcomponent: Service Request. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...
CVE-2017-10061
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: Integration Broker. Supported versions that are affected are 8.54 and 8.55. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
Oracle Retail Open Commerce Platform Remote Vulnerability (CNVD-2017-27233)
Oracle Retail Applications is a set of retail applications store solutions from Oracle Corporation, of which Oracle Retail Open Commerce Platform is an e-commerce solution component. A security vulnerability exists in the Website subcomponent of the Retail Open Commerce Platform component of Orac...
Oracle iStore Remote Vulnerability (CNVD-2017-26818)
Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. Oracle iStore is one of the ability to allow merchant...
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2017-15378)
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management, etc. Oracle One-to-One Fulfillment is one of the...
CVE-2017-1326
IBM Sterling File Gateway does not properly restrict user requests based on permission level. This allows for users to update data related to other users, by manipulating the parameters passed in the POST request. IBM X-Force ID: 126060...
Oracle MySQL Cluster Denial of Service Vulnerability
Oracle MySQL is an open source relational database management system from Oracle, of which Oracle MySQL Cluster is a highly practical and redundant version for distributed computing environments. A denial of service vulnerability exists in the Cluster:DD subcomponent of the MySQL Cluster componen...
Oracle MySQL Server Unauthorized Operation Vulnerability (CNVD-2017-06386)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which the MySQL Server component is a server component. A security vulnerability exists in the Server: Security: Privileges subcomponent of the MySQL Server component in Oracle MySQL, version 5.7.17 a...
CVE-2017-3569
Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications subcomponent: OPERA Business Events. Supported versions that are affected are 5.4.0.x, 5.4.1.x, 5.4.2.x, 5.4.3.x, 5.5.0.x and 5.5.1.x. Easily "exploitable" vulnerability allows low...
CVE-2017-3541
Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware subcomponent: Server. Supported versions that are affected are 11.1.1.8.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to...
CVE-2017-3507
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware subcomponent: Web Console Design. Supported versions that are affected are 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HT...
CVE-2017-3451
Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Web. Supported versions that are affected are 4.0, 5.0, 5.1, 5.3, 6.0,6.1, 15.0 and 16.0. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP ...
Denial of Service Vulnerability in Multiple Lenovo Products
Lenovo Flex System x240 M5 and others are servers from the Chinese company Lenovo. A denial of service vulnerability exists in multiple Lenovo products. An attacker could cause a denial of service by updating the data structure to exploit the vulnerability...
CVE-2017-3415
Vulnerability in the Oracle Universal Work Queue component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network...
CVE-2017-3382
Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with...
CVE-2017-3339
Vulnerability in the Oracle Marketing component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...
CVE-2016-8304
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications subcomponent: Core. Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows low privileged attacker with...
Oracle Siebel Remote Vulnerability (CNVD-2017-00909)
Oracle Siebel CRM is the United States Oracle Oracle company's set of customer relationship management solutions , which includes sales management , marketing management , customer service systems , call centers and other modules.Siebel UI Framework is one of the framework components based on the...