Lucene search
K

156 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:48 a.m.8 views

CVE-2024-20943

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Internal Operations. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Knowledge...

5.4CVSS6AI score0.00269EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:33 p.m.8 views

CVE-2020-2524

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: InQuira Search. Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful attacks of...

5.9CVSS6AI score0.01446EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:22 p.m.6 views

CVE-2020-2522

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Information Manager Console. Supported versions that are affected are 8.6.0-8.6.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful...

4.3CVSS5.2AI score0.01041EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 5:8 a.m.11 views

CVE-2019-2719

Vulnerability in the Oracle Knowledge component of Oracle Siebel CRM subcomponent: Web Applications InfoCenter. Supported versions that are affected are 8.5.1.0 - 8.5.1.7, 8.6.0 and 8.6.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

6.1CVSS6.1AI score0.0108EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:31 p.m.11 views

CVE-2020-2791

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Information Manager Console. Supported versions that are affected are 8.6.0-8.6.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful...

9.8CVSS7.3AI score0.02129EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 2:28 p.m.14 views

CVE-2020-2931

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Web Applications - InfoCenter. Supported versions that are affected are 8.6.0-8.6.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successfu...

9.8CVSS7.3AI score0.02712EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/05 2:27 p.m.7 views

CVE-2020-2841

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge...

8.2CVSS7.2AI score0.01282EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.10 views

Oracle Siebel CRM 8.5.x < 16.4 (July 2016 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2016 CPU advisory. - Vulnerability in the Oracle Knowledge component of Oracle Siebel CRM subcomponent: Information Manager Console. The supported version that is...

6.5CVSS6.2AI score0.01917EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.25 views

Oracle Siebel Server 8.5.1.x <= 8.5.1.7 / 8.6.0 / 8.6.1 (April 2019 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2019 CPU advisory. - Vulnerability in the Oracle Knowledge component of Oracle Siebel CRM subcomponent: Information Manager Console Apache Xalan. Supported versions...

9.8CVSS6.9AI score0.95821EPSS
Exploits6References7
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.10 views

Oracle Siebel Server 8.5.1.x <= 8.5.1.7 / 8.6.0 (April 2019 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the April 2019 CPU advisory - Vulnerability in the Oracle Knowledge component of Oracle Siebel CRM subcomponent: AnswerFlow Spring Framework. Supported versions that are affected are...

9CVSS8.2AI score0.05077EPSS
Exploits0References2
OSV
OSV
added 2024/02/17 2:15 a.m.7 views

CVE-2024-20943

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Internal Operations. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Knowledge...

5.4CVSS7.3AI score0.00269EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/02/07 12:0 a.m.5 views

The vulnerability of the Setup sub-component, part of the Admin component in Oracle Knowledge Management, a system for automating business processes within the Oracle E-Business Suite, allows an attacker to gain access to read, modify, add, or delete data.

The vulnerability of the Setup sub-component and the Admin component of Oracle Knowledge Management, a system for automating business processes within the Oracle E-Business Suite, exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating...

6.4CVSS6.8AI score0.0031EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/01/24 12:0 a.m.6 views

The vulnerability of the Setup sub-component, part of the Admin component in Oracle Knowledge Management, a system for automating business processes within the Oracle E-Business Suite, allows an attacker to gain access to read, modify, add, or delete data.

The vulnerability of the Setup sub-component and the Admin component of Oracle Knowledge Management, a system for automating business processes within the Oracle E-Business Suite, exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating...

6.4CVSS6.6AI score0.00269EPSS
Exploits0References4Affected Software2
NCSC
NCSC
added 2024/01/18 12:0 a.m.5 views

Vulnerabilities fixed in Oracle E-Business Suite

Oracle has fixed vulnerabilities in E-Business suite and components. A malicious party could exploit the vulnerabilities to perform attacks that could result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Manipulation of data Access to sensitive data Oracle...

6.5CVSS6.3AI score0.00493EPSS
Exploits0
CNNVD
CNNVD
added 2024/01/17 12:0 a.m.6 views

Oracle E-Business Suite Security Vulnerability

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Knowledge...

5.4CVSS6.6AI score0.00269EPSS
Exploits0References2
OSV
OSV
added 2024/01/16 10:15 p.m.5 views

CVE-2024-20948

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge...

6.1CVSS7.3AI score0.0031EPSS
Exploits0References1
NVD
NVD
added 2024/01/16 10:15 p.m.27 views

CVE-2024-20948

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge...

6.1CVSS5.8AI score0.0031EPSS
Exploits0References1
NVD
NVD
added 2024/01/16 10:15 p.m.23 views

CVE-2024-20940

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Create, Update, Authoring Flow. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

6.1CVSS5.8AI score0.00168EPSS
Exploits0References1
OSV
OSV
added 2024/01/16 10:15 p.m.4 views

CVE-2024-20940

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Create, Update, Authoring Flow. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

6.1CVSS7.3AI score0.00168EPSS
Exploits0References1
Prion
Prion
added 2024/01/16 10:15 p.m.18 views

Code injection

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Create, Update, Authoring Flow. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

5.8CVSS6.5AI score0.00168EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder