21 matches found
CVE-2025-21554
Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: Security. Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP...
CVE-2025-30729
Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: Security. Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP ...
The vulnerability of the Security component of the Oracle Communications Order and Service Management system allows a perpetrator to disclose protected information.
The vulnerability of the Security component of the Oracle Communications Order and Service Management system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information through HTTP requests...
The vulnerability of Oracle Communications’ Order and Service Management system, related to improper storage of permissions, allows a perpetrator to compromise the confidentiality and integrity of the protected information.
The vulnerability of Oracle Communications Order and Service Management system is related to improper storage of permissions. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality and integrity of the protected information...
CVE-2025-21554
Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: Security. Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP...
CVE-2025-21544
Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: Security. Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP ...
PT-2025-4266 · Oracle · Oracle Communications Order/Service Management
Name of the Vulnerable Software and Affected Versions: Oracle Communications Order and Service Management versions 7.4.0 through 7.5.0 Description: The issue is related to improper permission storage in the Oracle Communications Order and Service Management product, allowing a low-privileged...
Oracle Communications Applications 安全漏洞
Oracle Communications Applications is an advanced communications and collaboration services application from Oracle Corporation USA. A security vulnerability exists in Oracle Communications Order and Service Management version 7.4.0, version 7.4.1, and version 7.5.0 of Oracle Communications...
Oracle Communications Applications Security Vulnerability
Oracle Communications Applications and Oracle Communications are both products of Oracle Corporation.Oracle Communications Applications is an advanced communications and collaboration services application.Oracle Communications is a product. Integrated communications and cloud solutions for servic...
Vulnerabilities fixed in Oracle Communications Applications
Vulnerabilities have been fixed in Oracle Communications Applications. The vulnerabilities allow a malicious party to perform attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Remote code execution User rights Access to sensitive data Access to...
Oracle Communications Order and Service Management Component Remote Vulnerability (CNVD-2018-09096)
Oracle Communications is Oracle's suite of applications for rapidly delivering and monetizing digital life communications.Communications Order and Service Management is one of the components used to coordinate activities between internal BOSS systems. A security vulnerability exists in the WebUI...
CVE-2018-2756
CVE-2018-2756 affects Oracle Communications Order and Service Management (WebUI) in Oracle Communications Applications. A vulnerability in the WebUI subcomponent impacts supported versions 7.2.4.3.0, 7.3.0.1.x, 7.3.1.0.7 and 7.3.5.0.x. It allows a low-privileged attacker with network access via H...
CVE-2018-2756
Vulnerability in the Oracle Communications Order and Service Management component of Oracle Communications Applications subcomponent: WebUI. Supported versions that are affected are 7.2.4.3.0, 7.3.0.1.x, 7.3.1.0.7 and 7.3.5.0.x. Easily exploitable vulnerability allows low privileged attacker with...
CVE-2018-2567
Vulnerability in the Oracle Communications Order and Service Management component of Oracle Communications Applications subcomponent: Portal. Supported versions that are affected are 7.2.4.1.x, 7.2.4.2.x, 7.3.0.x.x and 7.3.0.1.x. Easily exploitable vulnerability allows unauthenticated attacker wi...
Design/Logic Flaw
Vulnerability in the Oracle Communications Order and Service Management component of Oracle Communications Applications subcomponent: Portal. Supported versions that are affected are 7.2.4.1.x, 7.2.4.2.x, 7.3.0.x.x and 7.3.0.1.x. Easily exploitable vulnerability allows unauthenticated attacker wi...
CVE-2018-2567
Vulnerability in the Oracle Communications Order and Service Management component of Oracle Communications Applications subcomponent: Portal. Supported versions that are affected are 7.2.4.1.x, 7.2.4.2.x, 7.3.0.x.x and 7.3.0.1.x. Easily exploitable vulnerability allows unauthenticated attacker wi...
CVE-2018-2567
Vulnerability in the Oracle Communications Order and Service Management component of Oracle Communications Applications subcomponent: Portal. Supported versions that are affected are 7.2.4.1.x, 7.2.4.2.x, 7.3.0.x.x and 7.3.0.1.x. Easily exploitable vulnerability allows unauthenticated attacker wi...
CVE-2018-2567
CVE-2018-2567 affects Oracle Communications Order and Service Management (Portal subcomponent). The vulnerability exists in supported versions 7.2.4.1.x, 7.2.4.2.x, 7.3.0.x.x and 7.3.0.1.x. According to the sources, an unauthenticated attacker with network access via HTTP can compromise the syste...
Buffer overflow
Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2.8.0, 6.2.0, 6.3.0, and 6.3.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors...
CVE-2009-1998
CVE-2009-1998 affects Oracle Communications Order and Service Management in Oracle Industry Applications versions 2.8.0, 6.2.0, 6.3.0 and 6.3.1. The vulnerability is described as an unspecified issue that allows remote authenticated users to affect confidentiality and integrity via unknown vector...