Lucene search
K

227 matches found

NVD
NVD
added 2023/10/17 10:15 p.m.31 views

CVE-2023-22029

Vulnerability in the Oracle Commerce Guided Search product of Oracle Commerce component: Workbench. The supported version that is affected is 11.3.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Commerce Guided Search. Successf...

6.1CVSS5.8AI score0.00327EPSS
Exploits0References1
OSV
OSV
added 2023/10/17 10:15 p.m.5 views

CVE-2023-22029

Vulnerability in the Oracle Commerce Guided Search product of Oracle Commerce component: Workbench. The supported version that is affected is 11.3.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Commerce Guided Search. Successf...

6.1CVSS5.8AI score0.00327EPSS
Exploits0References1
Prion
Prion
added 2023/10/17 10:15 p.m.21 views

Design/Logic Flaw

Vulnerability in the Oracle Commerce Guided Search product of Oracle Commerce component: Workbench. The supported version that is affected is 11.3.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Commerce Guided Search. Successf...

5.8CVSS5.9AI score0.00327EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/10/17 12:0 a.m.2 views

Oracle Commerce Security Vulnerability

Oracle Commerce is a suite of e-business solutions from Oracle Corporation. A security vulnerability exists in Oracle Commerce's Oracle Commerce Guided Search version 11.3.2, which originated from a vulnerability that could allow an unauthenticated attacker to compromise Oracle Commerce Guided...

6.1CVSS6.7AI score0.00327EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/10/17 12:0 a.m.5 views

PT-2023-6271 · Oracle · Oracle Commerce Guided Search

Name of the Vulnerable Software and Affected Versions: Oracle Commerce Guided Search version 11.3.2 Description: The issue is related to insufficient input validation in the Workbench component of Oracle Commerce Guided Search. This easily exploitable vulnerability allows an unauthenticated...

6.4CVSS5.4AI score0.00327EPSS
Exploits0References6
Qualys Blog
Qualys Blog
added 2023/04/19 11:47 a.m.391 views

Oracle Patch Tuesday April 2023 Security Update Review

Oracle has released the second quarterly edition of Critical Patch Update, which contains a group of patches for 433 security vulnerabilities. Some of the vulnerabilities addressed this month impact various products. These patches address vulnerabilities in Oracle code and third-party components...

7.5CVSS9.5AI score0.99677EPSS
Exploits126
BDU FSTEC
BDU FSTEC
added 2022/08/08 12:0 a.m.7 views

The vulnerability of the sub-component of the Dynamo Application Framework within the component of the Oracle Commerce Platform of the e-commerce platform Oracle Commerce allows a perpetrator to disclose protected information.

The vulnerability of the sub-component of the Dynamo Application Framework within the Oracle Commerce Platform of the e-commerce platform Oracle Commerce is related to the disclosure of information. Exploiting this vulnerability could allow an attacker to disclose the protected information...

5.5CVSS6.6AI score0.00226EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2022/07/20 12:0 a.m.20 views

Unspecified Vulnerability in Oracle Commerce

Oracle Commerce is the United States Oracle Oracle company's set of e-business solutions. Commerce Platform is one of them to provide a multi-functional e-business platform components. Oracle Commerce has a security vulnerability that can be exploited by an attacker to cause unauthorized access t...

5.5CVSS5.7AI score0.00226EPSS
Exploits0References1
NVD
NVD
added 2022/07/19 10:15 p.m.21 views

CVE-2022-21559

Vulnerability in the Oracle Commerce Platform product of Oracle Commerce component: Dynamo Application Framework. Supported versions that are affected are 11.3.0, 11.3.1 and 11.3.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

5.5CVSS0.00226EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/07/19 10:15 p.m.6 views

CVE-2022-21559

Vulnerability in the Oracle Commerce Platform product of Oracle Commerce component: Dynamo Application Framework. Supported versions that are affected are 11.3.0, 11.3.1 and 11.3.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

5.5CVSS6.7AI score0.00226EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/07/19 10:15 p.m.5 views

CVE-2022-21559

Vulnerability in the Oracle Commerce Platform product of Oracle Commerce component: Dynamo Application Framework. Supported versions that are affected are 11.3.0, 11.3.1 and 11.3.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

5.5CVSS6.7AI score0.00226EPSS
Exploits0References1
Prion
Prion
added 2022/07/19 10:15 p.m.13 views

Design/Logic Flaw

Vulnerability in the Oracle Commerce Platform product of Oracle Commerce component: Dynamo Application Framework. Supported versions that are affected are 11.3.0, 11.3.1 and 11.3.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

1.7CVSS5.6AI score0.00226EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/07/19 9:7 p.m.66 views

CVE-2022-21559

CVE-2022-21559 affects Oracle Commerce Platform (Dynamo Application Framework) with affected versions 11.3.0, 11.3.1 and 11.3.2. The vulnerability enables a low-privilege user who can log on to the infrastructure where Oracle Commerce Platform runs to potentially compromise the platform, leading ...

5.5CVSS5.2AI score0.00226EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/07/19 9:7 p.m.28 views

CVE-2022-21559

Vulnerability in the Oracle Commerce Platform product of Oracle Commerce component: Dynamo Application Framework. Supported versions that are affected are 11.3.0, 11.3.1 and 11.3.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

5.5CVSS5.8AI score0.00226EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/07/19 9:7 p.m.11 views

CVE-2022-21559

Vulnerability in the Oracle Commerce Platform product of Oracle Commerce component: Dynamo Application Framework. Supported versions that are affected are 11.3.0, 11.3.1 and 11.3.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

5.5CVSS6.2AI score0.00226EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/07/19 12:0 a.m.3 views

Oracle Commerce 安全漏洞

Oracle Commerce is the United States Oracle Oracle company's set of e-business solutions. Commerce Platform is one of them to provide a multi-functional e-business platform components. Oracle Commerce has a security vulnerability that can be exploited by an attacker to cause unauthorized access t...

5.5CVSS5.8AI score0.00226EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/06/27 12:0 a.m.11 views

The vulnerability of the Tools and Frameworks component of the Oracle Commerce Guided Search system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Tools and Frameworks component of the Oracle Commerce Guided Search system exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information through HTTP...

7.8CVSS7.2AI score0.01734EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/23 12:0 a.m.5 views

The vulnerability of the Tools and Frameworks component of the Oracle Commerce Guided Search search engine and the Oracle Commerce Experience Manager user environment management tool allows a perpetrator to gain access to and modify data.

The vulnerability of the Tools and Frameworks component of the Oracle Commerce Guided Search system, as well as the Oracle Commerce Experience Manager user environment management tool, exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to ga...

5.4CVSS6.6AI score0.00651EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/23 12:0 a.m.7 views

The vulnerability of the Tools and Frameworks component of the Oracle Commerce Guided Search search engine and the Oracle Commerce Experience Manager user environment management tool allows a perpetrator to gain access to data for reading purposes.

The vulnerability of the Tools and Frameworks component of the Oracle Commerce Guided Search search engine and the Oracle Commerce Experience Manager user environment management tool exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor t...

4.3CVSS6.4AI score0.0086EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/23 12:0 a.m.5 views

The vulnerability of the Commerce Service Center component in the Oracle Commerce Service Center platform for electronic commerce allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.

The vulnerability of the Commerce Service Center component in the Oracle Commerce Service Center platform exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information or to modify, add, or delete data...

6.1CVSS6.8AI score0.00809EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder