Lucene search
K

178 matches found

BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.5 views

The vulnerability of the Oracle Application Express Opportunity Tracker application, related to deficiencies in access control, allows an attacker to gain access to modify, add, or delete data.

The vulnerability of the Oracle Application Express Opportunity Tracker sales management application is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain access to modify, add, or delete data using the HTTP protocol...

5.4CVSS6.6AI score0.0069EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/01/20 3:15 p.m.22 views

Design/Logic Flaw

Vulnerability in the Oracle Application Express Survey Builder component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromi...

4.9CVSS5AI score0.0069EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/01/20 2:50 p.m.25 views

CVE-2021-2117

Vulnerability in the Oracle Application Express Survey Builder component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromi...

5.4CVSS5.6AI score0.0069EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/11/02 12:0 a.m.6 views

The vulnerability of the Oracle Application Express Data Reporter component of the Oracle Database Server database management system allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the Oracle Application Express Data Reporter component of the Oracle Database Server management system exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker to compromise the confidentiality and integrity of the protected...

5.5CVSS6.9AI score0.0069EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2020/10/22 12:0 a.m.4 views

Oracle Database Server Oracle Application Express component unauthorized access vulnerability

Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. An unauthorized vulnerability exists in Oracle Database Server Oracle Application Expre...

5.4CVSS9.1AI score0.00718EPSS
Exploits0References1
CNVD
CNVD
added 2020/10/22 12:0 a.m.5 views

Unspecified Vulnerability in Oracle Application Express Packaged Apps component

Oracle Applications Manager is an application management software from Oracle USA. The software provides monitoring, trending, and fault management for Oracle data files. A security vulnerability exists in Oracle Application Express Packaged Apps component prior to version 20.2, which can be...

5.4CVSS9.3AI score0.00718EPSS
Exploits0References1
CNVD
CNVD
added 2020/10/22 12:0 a.m.3 views

Oracle Application Express Data Reporter component privilege acquisition vulnerability

Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. A privilege acquisition vulnerability exists in Oracle Application Express Data Reporte...

5.4CVSS9.2AI score0.0069EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.7 views

CVE-2020-14900

Vulnerability in the Oracle Application Express Group Calendar component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromi...

5.4CVSS6.8AI score
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.6 views

CVE-2020-14899

Vulnerability in the Oracle Application Express Data Reporter component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromis...

5.4CVSS6.8AI score0.0069EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.5 views

CVE-2020-14898

Vulnerability in the Oracle Application Express Packaged Apps component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromis...

5.4CVSS7.3AI score0.00718EPSS
Exploits0References1
NVD
NVD
added 2020/10/21 3:15 p.m.18 views

CVE-2020-14898

Vulnerability in the Oracle Application Express Packaged Apps component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromis...

5.4CVSS0.00718EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.4 views

CVE-2020-14763

Vulnerability in the Oracle Application Express Quick Poll component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromise...

5.4CVSS6.8AI score0.00718EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.3 views

CVE-2020-14762

Vulnerability in the Oracle Application Express component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application...

5.4CVSS6.8AI score0.00718EPSS
Exploits0References1
NVD
NVD
added 2020/10/21 3:15 p.m.19 views

CVE-2020-14762

Vulnerability in the Oracle Application Express component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application...

5.4CVSS0.00718EPSS
Exploits0References1
Prion
Prion
added 2020/10/21 3:15 p.m.20 views

Design/Logic Flaw

Vulnerability in the Oracle Application Express Data Reporter component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromis...

4.9CVSS5AI score0.0069EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/10/21 3:15 p.m.20 views

Design/Logic Flaw

Vulnerability in the Oracle Application Express Packaged Apps component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromis...

4.9CVSS5AI score0.00718EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/10/21 2:4 p.m.54 views

CVE-2020-14899

CVE-2020-14899 affects the Oracle Application Express Data Reporter component of Oracle Database Server (pre-20.2). The issue is exploitable by a low-privilege user with a valid account, via HTTP, and requires user interaction. An attacker can modify and delete data and also obtain unauthorized r...

5.4CVSS5AI score0.0069EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/10/21 2:4 p.m.22 views

CVE-2020-14899

Vulnerability in the Oracle Application Express Data Reporter component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromis...

5.4CVSS5.2AI score0.0069EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/10/21 2:4 p.m.12 views

CVE-2020-14762

Vulnerability in the Oracle Application Express component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application...

5.4CVSS6.1AI score0.00718EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/21 2:4 p.m.29 views

CVE-2020-14763

Vulnerability in the Oracle Application Express Quick Poll component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromise...

5.4CVSS5.2AI score0.00718EPSS
Exploits0References1
Rows per page
Query Builder