Lucene search
K

1857 matches found

Vulnrichment
Vulnrichment
added 2017/04/24 7:0 p.m.8 views

CVE-2017-3502

Vulnerability in the PeopleSoft Enterprise FIN Receivables component of Oracle PeopleSoft Products subcomponent: Receivables. The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

5.5AI score0.01658EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/04/24 7:0 p.m.20 views

CVE-2017-3476

Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications subcomponent: Miscellaneous. Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0.1 and 12.0.1. Easily "exploitable" vulnerability allows low privileged attacker with network access vi...

6.2AI score0.01537EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/04/24 7:0 p.m.21 views

CVE-2017-3603

Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware subcomponent: Advanced UI. Supported versions that are affected are 11.1.1.8.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP t...

3.2AI score0.01046EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2017/04/24 12:0 a.m.7 views

PT-2017-15942

Name of the Vulnerable Software and Affected Versions Oracle WebLogic Server versions 10.3.6.0, 12.1.3.0, 12.2.1.0, 12.2.1.1, 12.2.1.2 Description The issue allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks can result in...

7.4CVSS9.1AI score0.96015EPSS
Exploits9References35
BDU FSTEC
BDU FSTEC
added 2017/04/20 12:0 a.m.6 views

The vulnerability of the iOS operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the iTunes Store web service’s iTunes sandbox component in the iOS operating system is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information ...

4.3CVSS6.5AI score0.00803EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2017/03/13 6:59 a.m.19 views

Design/Logic Flaw

An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1, caused by lack of a protection mechanism involving HTTP Access-Control headers. To exploit the vulnerability, an attacker can send cross-domain requests directly to the REST API for users with a valid...

7.5CVSS9.2AI score0.00727EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/03/13 6:14 a.m.55 views

CVE-2017-6080

CVE-2017-6080 affects Zammad versions prior to 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1. Root cause: missing protection via HTTP Access-Control headers. Attack surface: cross-domain requests to the REST API for users with a valid session cookie, enabling disclosure of results. Impact ran...

9.8CVSS9.3AI score0.00727EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/02/07 5:59 p.m.19 views

CVE-2016-6495

NetApp Data ONTAP before 8.2.4P5, when operating in 7-Mode, allows remote attackers to obtain information about the volumes configured for HTTP access...

5.9CVSS5.6AI score0.0148EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/02/07 5:0 p.m.20 views

CVE-2016-6495

NetApp Data ONTAP before 8.2.4P5, when operating in 7-Mode, allows remote attackers to obtain information about the volumes configured for HTTP access...

5.6AI score0.0148EPSS
Exploits0References1
OSV
OSV
added 2017/01/27 10:59 p.m.4 views

CVE-2017-3435

Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network...

8.2CVSS7.3AI score0.01404EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.2 views

CVE-2017-3440

Vulnerability in the Oracle Customer Interaction History component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

8.2CVSS5.8AI score0.01795EPSS
Exploits0References3
OSV
OSV
added 2017/01/27 10:59 p.m.4 views

CVE-2017-3431

Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network...

8.2CVSS7.3AI score0.01237EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.3 views

CVE-2017-3411

Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with...

8.2CVSS7.3AI score0.01237EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.8 views

CVE-2017-3412

Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with...

8.2CVSS7.3AI score0.01237EPSS
Exploits0References2
NVD
NVD
added 2017/01/27 10:59 p.m.15 views

CVE-2017-3430

Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network...

8.2CVSS8.2AI score0.01237EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.3 views

CVE-2017-3430

Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network...

8.2CVSS7.3AI score0.01237EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.5 views

CVE-2017-3410

Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with...

8.2CVSS7.3AI score0.01237EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.3 views

CVE-2017-3406

Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with...

8.2CVSS7.3AI score0.01237EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.3 views

CVE-2017-3405

Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with...

8.2CVSS5.8AI score0.01404EPSS
Exploits0References2
OSV
OSV
added 2017/01/27 10:59 p.m.5 views

CVE-2017-3409

Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with...

8.2CVSS7.3AI score0.01237EPSS
Exploits0References2
Rows per page
Query Builder