98 matches found
CVE-2021-2434
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Application Service. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
EUVD-2001-0521
Malware in sbrugna...
EUVD-2021-16893
Malware in sbrugna...
EUVD-2024-18762
Malicious code in bioql PyPI...
EUVD-2024-18622
Malicious code in bioql PyPI...
EUVD-2023-26013
Malicious code in bioql PyPI...
EUVD-2023-26202
Malicious code in bioql PyPI...
CVE-2023-21847
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Download. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Web...
CVE-2022-21587
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Upload. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Web...
CVE-2022-39428
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Upload. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Web...
CVE-2024-21048
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: XML input. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Web...
CVE-2024-21048
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: XML input. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Web...
CVE-2024-21048
CVE-2024-21048 affects Oracle E-Business Suite’s Oracle Web Applications Desktop Integrator (XML input) for versions 12.2.3–12.2.13. The root cause is insufficient input validation in the XML input component, enabling a low-privileged, network-accessible attacker over HTTP to read data from the a...
Oracle E-Business Suite 的 Oracle Web Applications Desktop Integrator 安全漏洞
Oracle E-Business Suite E-Business Suite is a suite of fully integrated global business management software from Oracle Corporation. The software provides customer relationship management, service management, financial management, and other functions. A security vulnerability exists in Oracle Web...
PT-2024-3528 · Oracle · Oracle Web Applications Desktop Integrator
Name of the Vulnerable Software and Affected Versions: Oracle Web Applications Desktop Integrator versions 12.2.3 through 12.2.13 Description: The issue is related to insufficient input validation in the XML input component of Oracle Web Applications Desktop Integrator, part of the Oracle...
CVE-2024-20907
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: File download. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
Design/Logic Flaw
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: File download. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2024-20907
Oracle E-Business Suite CVE-2024-20907 affects Oracle Web Applications Desktop Integrator (component: File download) in versions 12.2.3–12.2.13. The root cause is insufficient input validation in the file download component. The vulnerability allows an unauthenticated attacker, reachable over HTT...
The vulnerability of the file loading component of the Oracle Web Applications Desktop Integrator software allows a attacker to compromise the confidentiality and integrity of the protected information.
The vulnerability of the file loading component of the Oracle Web Applications Desktop Integrator software relates to insufficient validation of input data. Exploiting this vulnerability allows an attacker to compromise the confidentiality and integrity of protected information through the use of...
Vulnerabilities fixed in Oracle E-Business Suite
Oracle has fixed vulnerabilities in E-Business suite and components. A malicious party could exploit the vulnerabilities to perform attacks that could result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Manipulation of data Access to sensitive data Oracle...