Lucene search
K

156 matches found

CVE
CVE
added 2024/01/16 9:41 p.m.40 views

CVE-2024-20940

The CVE-2024-20940 entry concerns Oracle E-Business Suite’s Knowledge Management component (Create/Update/Authoring Flow). Affected versions are 12.2.3–12.2.13; the issue is exploitable over HTTP with network access and unauthenticated access, requiring user interaction, and may lead to unauthori...

6.1CVSS5.8AI score0.00168EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.4 views

Oracle E-Business Suite Security Vulnerability

Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management, etc. Knowledge Management is one of the knowledge...

6.1CVSS6.7AI score0.0031EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.6 views

PT-2024-1211 · Oracle · Oracle Knowledge Management +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue is related to insufficient input validation in the Oracle Knowledge Management product, allowing a low-privileged attacker with network access via HTTP to compromi...

6.4CVSS7.2AI score0.00269EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 4:3 a.m.3 views

SUSE CVE-2020-2932

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: Information Manager Console. Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successfu...

5.9CVSS5.7AI score0.01477EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/05/12 12:0 a.m.5 views

The vulnerability of the Shopping Cart component of the Oracle Knowledge Management component within the Oracle E-Business Suite allows a malicious individual to access, modify, add, or delete data, as well as gain unauthorized access to protected information.

The vulnerability of the Shopping Cart component of the Oracle Knowledge Management component within the Oracle E-Business Suite involves deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, as well as gain...

8.2CVSS6.8AI score0.79936EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2021/04/22 10:15 p.m.14 views

CVE-2021-2198

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS0.79936EPSS
Exploits0References1
OSV
OSV
added 2021/04/22 10:15 p.m.3 views

CVE-2021-2198

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS6.8AI score0.79936EPSS
Exploits0References1
Prion
Prion
added 2021/04/22 10:15 p.m.16 views

Design/Logic Flaw

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

5.8CVSS8.3AI score0.79936EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/04/22 9:53 p.m.23 views

CVE-2021-2198

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS8.5AI score0.79936EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/21 12:0 a.m.7 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2021-39942)

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is a seamless integration of a management suite. Oracle Knowledge...

8.2CVSS6.3AI score0.79936EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/20 12:0 a.m.6 views

Oracle Knowledge 安全漏洞

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is a seamless integration of a management suite. Oracle Knowledge...

8.2CVSS5.7AI score0.79936EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.3 views

The vulnerability of the Information Manager Console component of the Oracle Knowledge business application, which allows a malicious individual to gain access to modify, add, or delete data.

The vulnerability of the Information Manager Console component in the Oracle Knowledge business application relates to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to gain access to data modification, addition, or deletion through the HTTP protocol...

4.3CVSS5.8AI score0.01041EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.5 views

The vulnerability of the Information Manager Console component of the Oracle Knowledge business application allows a malicious individual to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Information Manager Console component in the Oracle Knowledge business application, where input data is not thoroughly verified. Exploiting this vulnerability could allow an attacker to gain access to modify, add, or delete data, or to unauthorizedly access protected...

5.8CVSS6AI score0.00942EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.22 views

The vulnerability of the Information Manager Console component of the Oracle Knowledge business application, which allows a perpetrator to compromise the integrity, confidentiality, and accessibility of protected information.

The vulnerability of the Information Manager Console component of the Oracle Knowledge business application relates to insufficient validation of input data. Exploiting this vulnerability allows an attacker to compromise the integrity, confidentiality, and accessibility of protected information...

10CVSS7.7AI score0.02129EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.3 views

The vulnerability of the Information Manager Console component of the Oracle Knowledge business application, which allows a perpetrator to compromise the integrity, confidentiality, and accessibility of protected information.

The vulnerability of the Information Manager Console component of the Oracle Knowledge business application relates to insufficient validation of input data. Exploiting this vulnerability allows an attacker to compromise the integrity, confidentiality, and accessibility of protected information...

8.5CVSS6.8AI score0.00723EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.3 views

Vulnerability of Web Applications – The Business Application InfoCenter of Oracle Knowledge, which allows attackers to compromise the integrity, confidentiality, and accessibility of protected information.

The vulnerability of Web applications – the Oracle Knowledge business application’s InfoCenter is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to compromise the integrity, confidentiality, and accessibility of protected information through HTT...

10CVSS7.7AI score0.02712EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.5 views

The vulnerability of the Information Manager Console component in the Oracle Knowledge business application, which allows a hacker to trigger a service failure.

The vulnerability of the Information Manager Console component in the Oracle Knowledge business application relates to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to trigger a service failure using the HTTP protocol...

7.1CVSS6.5AI score0.01477EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.4 views

The vulnerability of the InQuira Search component in the Oracle Knowledge business application allows a hacker to trigger a service failure.

The vulnerability of the InQuira Search component in the Oracle Knowledge knowledge management business application is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to trigger a service failure using the HTTP protocol...

7.1CVSS6.5AI score0.01446EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/05/26 12:0 a.m.6 views

The vulnerability of the Setup and Admin components of the Oracle Knowledge Management application allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Setup and Admin components of the Oracle Knowledge Management application is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using the HTTP network...

8.2CVSS7.5AI score0.01282EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2020/04/16 12:0 a.m.2 views

Unspecified Vulnerability in Oracle Knowledge (CNVD-2020-26991)

Oracle Knowledge is a complete knowledge management solution that provides personalized and seamless cross-channel service and support. A security vulnerability exists in the Information Manager Console component in Oracle Knowledge 8.6.0-8.6.3. An attacker could exploit the vulnerability to...

5.8CVSS8.4AI score0.00942EPSS
Exploits0References1
Rows per page
Query Builder