CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

123 matches found

NVD•added 2026/06/17 10:54 a.m.•5 views

CVE-2026-46937

Vulnerability in the Oracle iSetup product of Oracle E-Business Suite component: General Ledger Update Transform, Reports. Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

8.8CVSS0.00402EPSS

Exploits0References1

NVD•added 2026/06/17 10:54 a.m.•4 views

CVE-2026-46893

Vulnerability in the JD Edwards EnterpriseOne General Ledger product of Oracle JD Edwards component: E1 Foundation. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise JD Edwards EnterpriseOne...

9.9CVSS0.00286EPSS

Exploits0References1

NCSC•added 2026/06/17 9:25 a.m.•8 views

Vulnerabilities in Oracle JD Edwards EnterpriseOne

Oracle has identified several vulnerabilities in Oracle JD Edwards EnterpriseOne, including the modules Tools, Accounts Payable, Human Resources Management, General Ledger, Order Promising, and Project Costing, specifically for versions 9.2.0.0 to 9.2.26.2. These vulnerabilities enable attackers ...

9.9CVSS5.5AI score0.00483EPSS

Exploits0References1

Positive Technologies•added 2026/06/16 12:0 a.m.•9 views

PT-2026-50040

Name of the Vulnerable Software and Affected Versions Oracle iSetup versions 12.2.3 through 12.2.15 Description An issue exists in the General Ledger Update Transform, Reports component of the Oracle iSetup product within Oracle E-Business Suite. A low privileged attacker with network access via...

8.8CVSS5.8AI score0.00402EPSS

Exploits0References3

Positive Technologies•added 2026/06/16 12:0 a.m.•12 views

PT-2026-50000

Name of the Vulnerable Software and Affected Versions Oracle JD Edwards EnterpriseOne General Ledger version 9.2 Description A flaw in the E1 Foundation component allows a low-privileged attacker with network access via SMB Server Message Block, a network file sharing protocol to compromise the...

9.9CVSS5.8AI score0.00286EPSS

Exploits0References3

RedhatCVE•added 2026/01/14 1:22 a.m.•3 views

CVE-2026-0501

Due to insufficient input validation in SAP S/4HANA Private Cloud and On-Premise Financials General Ledger, an authenticated user could execute crafted SQL queries to read, modify, and delete backend database data. This leads to a high impact on the confidentiality, integrity, and availability of...

9.9CVSS7.2AI score0.00414EPSS

Exploits0References1

CVE•added 2026/01/13 1:14 a.m.•22 views

CVE-2026-0501

CVE-2026-0501 is a SQL injection vulnerability in SAP S/4HANA Private Cloud and On‑Premise (Financials General Ledger) caused by insufficient input validation. An authenticated user can craft SQL queries to read, modify, and delete data in the backend database, potentially compromising confidenti...

9.9CVSS6.8AI score0.00414EPSS

Exploits0References2

Vulnrichment•added 2026/01/13 1:14 a.m.•3 views

CVE-2026-0501 SQL Injection Vulnerability in SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger)

9.9CVSS6.8AI score0.00414EPSS

Exploits0References2

Cvelist•added 2026/01/13 1:14 a.m.•27 views

CVE-2026-0501 SQL Injection Vulnerability in SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger)

9.9CVSS0.00414EPSS

Exploits0References2

Positive Technologies•added 2026/01/13 12:0 a.m.•5 views

PT-2026-2337

Name of the Vulnerable Software and Affected Versions SAP S/4HANA Private Cloud and On-Premise Financials General Ledger affected versions not specified Description The issue stems from inadequate input validation within the SAP S/4HANA Financials General Ledger component. An authenticated user c...

9.9CVSS6.2AI score0.00414EPSS

Exploits0References16

RedhatCVE•added 2026/01/09 8:52 a.m.•3 views

CVE-2021-2276

Vulnerability in the Oracle iSetup product of Oracle E-Business Suite component: General Ledger Update Transform, Reports. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

8.1CVSS6.6AI score0.00987EPSS

Exploits0References1

EUVD•added 2025/12/09 6:30 p.m.•4 views

EUVD-2025-201851

Due to a Missing Authorization Check vulnerability in SAP S/4 HANA Private Cloud Financials General Ledger, an authenticated attacker with authorization limited to a single company code could read sensitive data and post or modify documents across all company codes. Successful exploitation could...

7.1CVSS6AI score0.00255EPSS

Exploits0References3

CVE•added 2025/12/09 2:14 a.m.•16 views

CVE-2025-42876

CVE-2025-42876 concerns a Missing Authorization Check in SAP S/4 HANA Private Cloud (Financials General Ledger). An authenticated user limited to one company code could read data and post/modify documents across all company codes. Impact: confidentiality high, integrity low; availability unchange...

7.1CVSS6.1AI score0.00255EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-14511

Malware in sbrugna...

9.1CVSS9.2AI score0.01949EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-16735

Malware in sbrugna...

8.1CVSS7AI score0.00987EPSS

Exploits0References2