91 matches found
CVE-2021-2434
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Application Service. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
EUVD-2001-0521
Malware in sbrugna...
EUVD-2021-16893
Malware in sbrugna...
EUVD-2023-26013
Malicious code in bioql PyPI...
EUVD-2023-26202
Malicious code in bioql PyPI...
EUVD-2024-18622
Malicious code in bioql PyPI...
EUVD-2024-18762
Malicious code in bioql PyPI...
CVE-2023-21847
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Download. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Web...
CVE-2022-21587
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Upload. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Web...
CVE-2022-39428
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: Upload. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Web...
CVE-2024-21048
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: XML input. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Web...
CVE-2024-21048
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: XML input. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Web...
CVE-2024-21048
CVE-2024-21048 affects Oracle E-Business Suite’s Oracle Web Applications Desktop Integrator (XML input) for versions 12.2.3–12.2.13. The root cause is insufficient input validation in the XML input component, enabling a low-privileged, network-accessible attacker over HTTP to read data from the a...
PT-2024-3528 · Oracle · Oracle Web Applications Desktop Integrator
Name of the Vulnerable Software and Affected Versions: Oracle Web Applications Desktop Integrator versions 12.2.3 through 12.2.13 Description: The issue is related to insufficient input validation in the XML input component of Oracle Web Applications Desktop Integrator, part of the Oracle...
Oracle E-Business Suite 的 Oracle Web Applications Desktop Integrator 安全漏洞
Oracle E-Business Suite E-Business Suite is a suite of fully integrated global business management software from Oracle Corporation. The software provides customer relationship management, service management, financial management, and other functions. A security vulnerability exists in Oracle Web...
CVE-2024-20907
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: File download. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
Design/Logic Flaw
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: File download. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2024-20907
Oracle E-Business Suite CVE-2024-20907 affects Oracle Web Applications Desktop Integrator (component: File download) in versions 12.2.3–12.2.13. The root cause is insufficient input validation in the file download component. The vulnerability allows an unauthenticated attacker, reachable over HTT...
Vulnerabilities fixed in Oracle E-Business Suite
Oracle has fixed vulnerabilities in E-Business suite and components. A malicious party could exploit the vulnerabilities to perform attacks that could result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Manipulation of data Access to sensitive data Oracle...
Oracle E-Business Suite Security Vulnerability
Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Web...