Lucene search
K

150 matches found

nvd
nvd
added 2024/02/13 6:15 p.m.26 views

CVE-2024-21394

Dynamics 365 Field Service Spoofing Vulnerability...

7.6CVSS7.6AI score0.01117EPSS
Exploits0References1
osv
osv
added 2024/02/13 6:15 p.m.5 views

CVE-2024-21394

Dynamics 365 Field Service Spoofing Vulnerability...

7.6CVSS5.8AI score0.01117EPSS
Exploits0References1
prion
prion
added 2024/02/13 6:15 p.m.18 views

Spoofing

Dynamics 365 Field Service Spoofing Vulnerability...

4.9CVSS7.1AI score0.01117EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2024/02/13 6:2 p.m.18 views

CVE-2024-21394 Dynamics 365 Field Service Spoofing Vulnerability

...

7.6CVSS7.2AI score0.01117EPSS
Exploits0References1
cvelist
cvelist
added 2024/02/13 6:2 p.m.29 views

CVE-2024-21394 Dynamics 365 Field Service Spoofing Vulnerability

...

7.6CVSS7.9AI score0.01117EPSS
Exploits0References1
cve
cve
added 2024/02/13 6:2 p.m.200 views

CVE-2024-21394

CVE-2024-21394 is a spoofing vulnerability in Microsoft Dynamics 365 Field Service (on-premises) where an attacker can remotely spoof the user interface. The CVSS 3.1 vector indicates network access, low attack complexity, low privileges required, but user interaction is needed, with confidential...

7.6CVSS7.9AI score0.01117EPSS
Exploits0References1Affected Software1
mscve
mscve
added 2024/02/13 8:0 a.m.30 views

Dynamics 365 Field Service Spoofing Vulnerability

...

7.6CVSS7.3AI score0.01117EPSS
Exploits0
ptsecurity
ptsecurity
added 2024/02/13 12:0 a.m.2 views

PT-2024-18866 · Microsoft · Dynamics 365 Field Service

Name of the Vulnerable Software and Affected Versions: Dynamics 365 Field Service affected versions not specified Description: The issue concerns a spoofing vulnerability. There is no information provided about the estimated number of potentially affected devices worldwide or details about...

7.6CVSS9.5AI score0.01117EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2023/07/12 12:0 a.m.6 views

PT-2023-9532 · Oracle · Oracle E-Business Suite +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue is related to errors in authorization within the Field Service Engineer Portal component of Oracle Field Service in Oracle E-Business Suite. This easily exploitabl...

8.5CVSS8.1AI score0.00435EPSS
Exploits0References8
ics
ics
added 2023/02/28 1:30 p.m.64 views

Hitachi Energy Relion 670, 650 and SAM600-IO Series

1. EXECUTIVE SUMMARY CVSS v3 4.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: Relion 670, 650, and SAM600-IO Series Vulnerability: Insufficient Verification of Data Authenticity 2. RISK EVALUATION Successful exploitation of this vulnerability could cause...

4.5CVSS4.7AI score0.00353EPSS
Exploits0References9
susecve
susecve
added 2023/02/15 5:46 a.m.4 views

SUSE CVE-2012-3148

Unspecified vulnerability in the Oracle Field Service component in Oracle E-Business Suite 12.1.3 allows remote authenticated users to affect integrity, related to Wireless/WAP upload...

3.5CVSS6.6AI score0.0082EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2023/01/31 12:0 a.m.11 views

The vulnerability of the Synchronization sub-component of the Oracle Mobile Field Service component in the Oracle E-Business Suite system allows a perpetrator to gain access to modify, add, or delete protected data.

The vulnerability of the Synchronization sub-component of the Oracle Mobile Field Service component in the Oracle E-Business Suite enterprise automation system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker who operates remotely to modify,...

7.8CVSS7.3AI score0.00517EPSS
Exploits0References2Affected Software2
osv
osv
added 2023/01/18 12:15 a.m.5 views

CVE-2023-21853

Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite component: Synchronization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field...

7.5CVSS7.2AI score0.00517EPSS
Exploits0References1
nvd
nvd
added 2023/01/18 12:15 a.m.32 views

CVE-2023-21853

Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite component: Synchronization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field...

7.5CVSS7AI score0.00517EPSS
Exploits0References1
prion
prion
added 2023/01/18 12:15 a.m.26 views

Design/Logic Flaw

Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite component: Synchronization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field...

5CVSS7.3AI score0.00517EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2023/01/18 12:0 a.m.3 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Mobile Fiel...

7.5CVSS7.8AI score0.00517EPSS
Exploits0References2
cve
cve
added 2023/01/17 11:35 p.m.59 views

CVE-2023-21853

CVE-2023-21853 affects Oracle E-Business Suite, specifically the Oracle Mobile Field Service Synchronization component. The vulnerability impacts E-Business Suite versions 12.2.3–12.2.12 and can be exploited by an unauthenticated attacker with network access over HTTP to create, delete, or modify...

7.5CVSS7AI score0.00517EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2023/01/17 12:0 a.m.6 views

PT-2023-1240 · Oracle · Oracle E-Business Suite +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.12 Description: The issue is related to insufficient input validation in the Synchronization component of Oracle Mobile Field Service. It allows an unauthenticated attacker with network...

7.8CVSS8.7AI score0.00517EPSS
Exploits0References4
cnnvd
cnnvd
added 2022/07/18 12:0 a.m.5 views

IBM PowerVM Hypervisor 权限许可和访问控制问题漏洞

IBM PowerVM Hypervisor is an application from Universal Business Machines IBM, Inc. Providing a secure and scalable virtualized environment, these applications are built on the advanced RAS features and leading performance of the Power Systems platform. IBM PowerVM Hypervisor is vulnerable to a...

7.6CVSS7AI score0.00634EPSS
Exploits0References4
bdu_fstec
bdu_fstec
added 2022/06/23 12:0 a.m.8 views

The vulnerability of the Wireless component of the Oracle Field Service software solution from the Oracle E-Business Suite allows a perpetrator to gain access to and modify data.

The vulnerability of the Wireless component of the Oracle Field Service software in the Oracle E-Business Suite exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to read, modify, add, or delete data...

8.5CVSS7.6AI score0.01185EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder