Lucene search
+L

242 matches found

RedhatCVE
RedhatCVE
added 2025/04/17 9:48 p.m.9 views

CVE-2025-30718

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Attachments, File Upload. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

5.4CVSS5.8AI score0.00289EPSS
Exploits0References1
NVD
NVD
added 2025/04/15 9:16 p.m.20 views

CVE-2025-30718

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Attachments, File Upload. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

5.4CVSS0.00289EPSS
Exploits0References1
OSV
OSV
added 2025/04/15 9:16 p.m.5 views

CVE-2025-30711

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Attachments, File Upload. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

5.4CVSS5.8AI score0.00317EPSS
Exploits0References1
NVD
NVD
added 2025/04/15 9:16 p.m.17 views

CVE-2025-30711

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Attachments, File Upload. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

5.4CVSS0.00317EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/15 12:0 a.m.5 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite is a set of fully integrated global business management software from Oracle USA. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Applications Framework versions...

5.4CVSS6.9AI score0.00289EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/06 1:3 a.m.12 views

CVE-2022-21566

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.9-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...

7.5CVSS6.5AI score0.01036EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:54 p.m.14 views

CVE-2020-14534

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Popups. The supported version that is affected is 12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications Framework...

8.2CVSS7.2AI score0.01432EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 3:45 p.m.12 views

CVE-2020-14610

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Attachments / File Upload. The supported version that is affected is 12.2.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

7.6CVSS6.9AI score0.00929EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 2:31 p.m.9 views

CVE-2020-2890

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

8.2CVSS7.2AI score0.01461EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/08/16 12:0 a.m.10 views

The vulnerability of the Personalization component of the Oracle Applications Framework, a web application development platform, within the Oracle E-Business Suite, allows an intruder to gain unauthorized access to read, modify, or delete data.

The vulnerability of the Personalization component of the Oracle Applications Framework, a platform for developing web applications in enterprise automation systems within the Oracle E-Business Suite, is related to improper authentication. Exploiting this vulnerability allows an attacker to gain...

5.5CVSS7.4AI score0.00313EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2024/07/16 11:15 p.m.26 views

CVE-2024-21148

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Personalization. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Application...

4.8CVSS0.00313EPSS
Exploits0References1
OSV
OSV
added 2024/07/16 11:15 p.m.5 views

CVE-2024-21148

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Personalization. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Application...

4.8CVSS7.3AI score0.00313EPSS
Exploits0References1
CVE
CVE
added 2024/07/16 10:39 p.m.59 views

CVE-2024-21148

CVE-2024-21148 affects Oracle E-Business Suite via Oracle Applications Framework (Personalization) in versions 12.2.3–12.2.13. An authenticated, high-privilege attacker with network access over HTTP can exploit this with user interaction to perform unauthorized read/update/delete of Oracle Applic...

4.8CVSS4.4AI score0.00313EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/30 12:0 a.m.6 views

The vulnerability of the REST Services component of the Oracle Applications Framework software platform, which is used in the Oracle E-Business Suite for automating business processes, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the REST Services component of the Oracle Applications Framework software platform in the Oracle E-Business Suite system, which is used for automating business operations, is related to insufficient validation of input data. Exploiting this vulnerability could allow an attack...

6.8CVSS7.2AI score0.00509EPSS
Exploits0References4Affected Software2
NCSC
NCSC
added 2024/04/18 12:0 a.m.6 views

Vulnerabilities fixed in Oracle E-Business Suite

Oracle has fixed vulnerabilities in E-Business suite and components. A malicious party could exploit the vulnerabilities to perform Perform cross-site scripting XSS attacks. Such attacks can lead to execution of arbitrary code in the victim's victim's browser, or access sensitive data in the...

9.1CVSS7.3AI score0.00723EPSS
Exploits0
NVD
NVD
added 2024/04/16 10:15 p.m.23 views

CVE-2024-21080

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: REST Services. Supported versions that are affected are 12.2.9-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications...

6.5CVSS6.4AI score0.00509EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/16 12:0 a.m.6 views

Oracle E-Business Suite 的 Oracle Applications Framework 安全漏洞

Oracle E-Business Suite E-Business Suite and Oracle Applications Framework are both products of Oracle Corporation.Oracle E-Business Suite is a fully integrated global business management software. The software provides customer relationship management, service management, financial management an...

6.5CVSS7.3AI score0.00509EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.12 views

PT-2023-9319 · Oracle · Oracle Applications Framework

Name of the Vulnerable Software and Affected Versions: Oracle Applications Framework versions 12.2.3 through 12.2.13 Description: The issue is related to improper authorization in the Personalization component of Oracle Applications Framework, part of the Oracle E-Business Suite. This can allow a...

5.5CVSS7.3AI score0.00313EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/10/21 12:0 a.m.7 views

The vulnerability of the Personalization component of the Oracle Applications Framework, a software platform for enterprise automation systems in the Oracle E-Business Suite, allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the Personalization component of the Oracle Applications Framework software, which is part of the Oracle E-Business Suite, exists due to insufficient verification of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read,...

6.4CVSS6.3AI score0.00327EPSS
Exploits0References2Affected Software2
NCSC
NCSC
added 2023/10/19 12:0 a.m.8 views

Vulnerabilities fixed in Oracle E-Business Suite

Vulnerabilities have been fixed in Oracle E-Business Suite products. A malicious party could exploit the vulnerabilities to perform attacks that can result in the following categories of damage: Manipulation of data Bypassing authentication Oracle has fixed the vulnerabilities in the following...

6.5CVSS7.1AI score0.0051EPSS
Exploits0
Rows per page
Query Builder