150 matches found
CVE-2024-21394
Dynamics 365 Field Service Spoofing Vulnerability...
CVE-2024-21394
Dynamics 365 Field Service Spoofing Vulnerability...
Spoofing
Dynamics 365 Field Service Spoofing Vulnerability...
CVE-2024-21394 Dynamics 365 Field Service Spoofing Vulnerability
...
CVE-2024-21394 Dynamics 365 Field Service Spoofing Vulnerability
...
CVE-2024-21394
CVE-2024-21394 is a spoofing vulnerability in Microsoft Dynamics 365 Field Service (on-premises) where an attacker can remotely spoof the user interface. The CVSS 3.1 vector indicates network access, low attack complexity, low privileges required, but user interaction is needed, with confidential...
Dynamics 365 Field Service Spoofing Vulnerability
...
PT-2024-18866 · Microsoft · Dynamics 365 Field Service
Name of the Vulnerable Software and Affected Versions: Dynamics 365 Field Service affected versions not specified Description: The issue concerns a spoofing vulnerability. There is no information provided about the estimated number of potentially affected devices worldwide or details about...
PT-2023-9532 · Oracle · Oracle E-Business Suite +1
Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue is related to errors in authorization within the Field Service Engineer Portal component of Oracle Field Service in Oracle E-Business Suite. This easily exploitabl...
Hitachi Energy Relion 670, 650 and SAM600-IO Series
1. EXECUTIVE SUMMARY CVSS v3 4.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: Relion 670, 650, and SAM600-IO Series Vulnerability: Insufficient Verification of Data Authenticity 2. RISK EVALUATION Successful exploitation of this vulnerability could cause...
SUSE CVE-2012-3148
Unspecified vulnerability in the Oracle Field Service component in Oracle E-Business Suite 12.1.3 allows remote authenticated users to affect integrity, related to Wireless/WAP upload...
The vulnerability of the Synchronization sub-component of the Oracle Mobile Field Service component in the Oracle E-Business Suite system allows a perpetrator to gain access to modify, add, or delete protected data.
The vulnerability of the Synchronization sub-component of the Oracle Mobile Field Service component in the Oracle E-Business Suite enterprise automation system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker who operates remotely to modify,...
CVE-2023-21853
Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite component: Synchronization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field...
CVE-2023-21853
Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite component: Synchronization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field...
Design/Logic Flaw
Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite component: Synchronization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field...
Oracle E-Business Suite 安全漏洞
Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Mobile Fiel...
CVE-2023-21853
CVE-2023-21853 affects Oracle E-Business Suite, specifically the Oracle Mobile Field Service Synchronization component. The vulnerability impacts E-Business Suite versions 12.2.3–12.2.12 and can be exploited by an unauthenticated attacker with network access over HTTP to create, delete, or modify...
PT-2023-1240 · Oracle · Oracle E-Business Suite +1
Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.12 Description: The issue is related to insufficient input validation in the Synchronization component of Oracle Mobile Field Service. It allows an unauthenticated attacker with network...
IBM PowerVM Hypervisor 权限许可和访问控制问题漏洞
IBM PowerVM Hypervisor is an application from Universal Business Machines IBM, Inc. Providing a secure and scalable virtualized environment, these applications are built on the advanced RAS features and leading performance of the Power Systems platform. IBM PowerVM Hypervisor is vulnerable to a...
The vulnerability of the Wireless component of the Oracle Field Service software solution from the Oracle E-Business Suite allows a perpetrator to gain access to and modify data.
The vulnerability of the Wireless component of the Oracle Field Service software in the Oracle E-Business Suite exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to read, modify, add, or delete data...