142 matches found
CVE-2019-2621
CVE-2019-2621 affects Oracle E-Business Suite’s Oracle Application Object Library (AOL), specifically the Diagnostics subcomponent. Affected versions include 12.1.3 and 12.2.x releases up to 12.2.8. The vulnerability allows an unauthenticated attacker who can reach AOL over HTTP to compromise dat...
CVE-2019-2621
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Diagnostics. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network...
CVE-2018-3138
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Attachments / File Upload. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with...
Code injection
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Attachments / File Upload. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with...
Design/Logic Flaw
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Attachments / File Upload. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with...
CVE-2018-3138
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Attachments / File Upload. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with...
Unspecified Vulnerability in Oracle Application Object Library (CNVD-2018-24260)
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. Application Object Library AOL, Application Object Library is one of the system management components. A security vulnerability exists in the...
CVE-2018-2934
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Attachments / File Upload. The supported version that is affected is 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2018-2874
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Logging. The supported version that is affected is 12.1.3. Easily exploitable vulnerability allows physical access to compromise Oracle Application Object Library. Successful attacks require...
Design/Logic Flaw
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Logging. The supported version that is affected is 12.1.3. Easily exploitable vulnerability allows physical access to compromise Oracle Application Object Library. Successful attacks require...
Code injection
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Diagnostics. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access v...
CVE-2018-2804
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: DB Privileges. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Difficult to exploit vulnerability allows unauthenticated attacker with network acce...
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2018-09044)
Oracle E-Business Suite is based on the original Application ERP expansion, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management, and so on a variety of management software collection, is a seamless integration of a management suite. An...
CVE-2018-2635
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Login. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
CVE-2017-10331
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Diagnostics. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access v...
CVE-2017-10246
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: iHelp. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
CVE-2017-10177
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Flexfields. The supported version that is affected is 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Application...
Design/Logic Flaw
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Flexfields. The supported version that is affected is 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Application...
CVE-2017-10177
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Flexfields. The supported version that is affected is 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Application...
CVE-2017-10244
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite subcomponent: Attachments. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP ...