CVE-2024-21128

Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: APIs. Supported versions that are affected are 12.2.6-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Application Object...

CVE-2024-21128

Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: APIs. Supported versions that are affected are 12.2.6-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Application Object...

PT-2024-4991 · Oracle · Oracle E-Business Suite +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.6 through 12.2.13 Description: The issue exists due to insufficient input validation in the APIs component of the Oracle Application Object Library product. This allows a remote attacker with low privileg...

CVE-2024-20929

Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: DB Privileges. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applicati...

CVE-2024-20915

Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: Login - SSO. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application...

CVE-2024-20929

The CVE-2024-20929 entry concerns Oracle E-Business Suite’s Oracle Application Object Library (AOL) with the vulnerable DB Privileges component. Affected versions are 12.2.3–12.2.13. It is exploitable by an unauthenticated attacker over HTTP with network access, enabling unauthorized update/inser...

The vulnerability of the Login component – SSO of the Oracle Application Object Library – allows a perpetrator to cause a service failure.

The vulnerability of the Login component – SSO in the Oracle Application Object Library exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service failures using the HTTP protocol...

The vulnerability of the sub-component “Engineering Change Order” of the “Oracle Application Object Library” component in the Oracle E-Business Suite system, which allows a malicious actor to gain access to read, modify, add, or delete data.

The vulnerability of the Login component – SSO in the Oracle Application Object Library exists due to insufficient validation of input data. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gain access to read, modify, add, or delete data using the HTTP protocol...

The vulnerability of the DB Privileges component of the Oracle Application Object Library in the Oracle E-Business Suite allows a perpetrator to gain access to read, modify, or delete data.

The vulnerability of the DB Privileges component of the Oracle Application Object Library in the Oracle E-Business Suite system for enterprise automation activities is related to insufficient validation of input data. Exploiting this vulnerability may allow an attacker, operating remotely, to gai...

Oracle E-Business Suite Security Vulnerability

Oracle E-Business Suite E-Business Suite and Oracle Application Object Library AOL, Application Object Library are both products of the United States Oracle Oracle. Oracle E-Business Suite is a fully integrated set of global business management software. Oracle E-Business Suite is a set of fully...

Oracle E-Business Suite Security Vulnerability

Oracle E-Business Suite E-Business Suite and Oracle Application Object Library AOL, Application Object Library are both products of the United States Oracle Oracle. Oracle E-Business Suite is a fully integrated set of global business management software. Oracle E-Business Suite is a set of fully...

PT-2024-1210 · Oracle · Oracle E-Business Suite +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue exists due to insufficient input validation in the Engineering Change Order component of Oracle Application Object Library. This allows a remote attacker to gain...

Oracle E-Business Suite (Apr 2023 CPU)

The versions of Oracle E-Business Suite installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2023 CPU advisory. - Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: GUI. Supported versions that are...

CVE-2023-21978

Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: GUI. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Application Object...

Design/Logic Flaw

Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite component: GUI. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Application Object...

CVE-2023-21978

CVE-2023-21978 affects Oracle E-Business Suite, specifically the Oracle Application Object Library GUI component. Affected versions are 12.2.3–12.2.11. The underlying issue is insufficient input validation in the GUI of the Oracle Application Object Library, allowing a low-privileged, network-acc...

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Application...

PT-2023-2671 · Oracle · Oracle E-Business Suite

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.11 Description: The issue is related to insufficient input validation in the GUI component of the Oracle Application Object Library. This can be exploited by a remote attacker to cause a...

Mozilla Firefox Security Advisory (MFSA2013-87) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

GHSA-WPGH-HMV4-R3V5 Prototype pollution in safe-obj

Prototype pollution vulnerability in 'safe-obj' versions 1.0.0 through 1.0.2 allows an attacker to cause a denial of service and may lead to remote code execution...