303 matches found
CVE-2017-10192
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: Shopping Cart. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
CVE-2017-10186
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User and Company Profile. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access...
CVE-2017-10130
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Management. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP t...
CVE-2017-10130
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Management. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP t...
CVE-2017-10112
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Registration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...
Design/Logic Flaw
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Management. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP t...
Design/Logic Flaw
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User and Company Profile. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access...
Buffer overflow
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Registration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...
CVE-2017-10130
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Management. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP t...
CVE-2017-10130
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Management. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP t...
CVE-2017-10192
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: Shopping Cart. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
CVE-2017-10186
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User and Company Profile. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access...
CVE-2017-10186
CVE-2017-10186 affects Oracle E-Business Suite iStore, subcomponent User and Company Profile, with affected versions 12.1.1–12.2.6. The root cause is an access-control weakness that allows an unauthenticated attacker, over HTTP, to read a subset of Oracle iStore data. The CVSSv3 base score is 5.3...
CVE-2017-10112
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Registration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...
CVE-2017-10112
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Registration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTT...
Oracle iStore Remote Vulnerability (CNVD-2017-26818)
Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. Oracle iStore is one of the ability to allow merchant...
CVE-2017-3368
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: Address Book. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
CVE-2017-3287
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP t...
CVE-2017-3287
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP t...
Buffer overflow
Vulnerability in the Oracle iStore component of Oracle E-Business Suite subcomponent: Address Book. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...