Lucene search
K

182 matches found

OSV
OSV
added 2022/07/19 10:15 p.m.3 views

CVE-2022-21561

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.6.3 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

6.5CVSS7.3AI score0.00679EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/07/19 10:15 p.m.4 views

CVE-2022-21561

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.6.3 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

6.5CVSS6.9AI score0.00679EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/07/19 9:7 p.m.70 views

CVE-2022-21542

CVE-2022-21542 affects Oracle JD Edwards EnterpriseOne Tools (Web Runtime). Affected are versions 9.2.6.3 and earlier. A low-privilege, network-based attacker (HTTP) can compromise JD Edwards EnterpriseOne Tools, potentially enabling unauthorized update/insert/delete and read access to data, plus...

7.4CVSS7.1AI score0.00572EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/07/19 12:0 a.m.4 views

Oracle JD Edwards Products 输入验证错误漏洞

Oracle JD Edwards Products is a fully integrated suite of Enterprise Resource Planning ERP applications from Oracle. The products provide application modules for financial management, project management, and asset lifecycle management. An input validation error vulnerability exists in Oracle JD...

7.4CVSS7.6AI score0.00572EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/06/23 12:0 a.m.5 views

The vulnerability of the Web Runtime component of the JD Edwards EnterpriseOne Tools system allows a hacker to modify data.

The vulnerability of the Web Runtime component of the JD Edwards EnterpriseOne Tools system exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to modify, add, or delete data using the HTTP protocol...

6.1CVSS6.8AI score0.01032EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/15 12:0 a.m.6 views

The vulnerability of the Web Runtime component of the JD Edwards EnterpriseOne Tools system allows a perpetrator to gain access to and modify data.

The vulnerability of the Web Runtime component of the JD Edwards EnterpriseOne Tools system exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify, add, or delete data using the HTTP protocol...

5.4CVSS6.6AI score0.00511EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/11 12:0 a.m.5 views

The vulnerability of the Web Runtime component of the JD Edwards EnterpriseOne Tools system allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the Web Runtime component of the JD Edwards EnterpriseOne Tools system exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to compromise the confidentiality and integrity of the protected information...

6.4CVSS6.8AI score0.0078EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/04/19 9:15 p.m.19 views

CVE-2022-21409

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. The supported version that is affected is Prior to 9.2.6.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

6.1CVSS0.0078EPSS
Exploits0References1
OSV
OSV
added 2021/07/21 3:15 p.m.4 views

CVE-2021-2375

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.5.3 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

6.1CVSS7.3AI score
Exploits0References1
OSV
OSV
added 2021/07/21 3:15 p.m.4 views

CVE-2021-2373

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.5.3 and Prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

5.4CVSS6.7AI score
Exploits0References1
NVD
NVD
added 2021/07/21 3:15 p.m.21 views

CVE-2021-2373

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.5.3 and Prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

5.4CVSS0.00511EPSS
Exploits0References1
Prion
Prion
added 2021/07/21 3:15 p.m.15 views

Code injection

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.5.3 and Prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

4.9CVSS5.2AI score0.00511EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/07/21 3:15 p.m.13 views

Code injection

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.5.3 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

5.8CVSS5.9AI score0.01032EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2021/07/21 12:0 a.m.22 views

Oracle JD Edwards EnterpriseOne Tools has an unspecified vulnerability (CNVD-2021-54682)

Oracle JD Edwards Products is a fully integrated suite of enterprise resource planning applications ERP from Oracle Corporation USA. JD Edwards EnterpriseOne Tools is one of the components used to install, update, and manage JD Edwards EnterpriseOne applications. jD Edwards in Oracle JD Edwards A...

6.1CVSS2.2AI score0.01032EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/21 12:0 a.m.20 views

Oracle JD Edwards EnterpriseOne Tools has an unspecified vulnerability (CNVD-2021-54681)

Oracle JD Edwards Products is a fully integrated suite of enterprise resource planning applications ERP from Oracle Corporation USA. JD Edwards EnterpriseOne Tools is one of the components used to install, update and manage JD Edwards EnterpriseOne applications. An unspecified vulnerability exist...

5.4CVSS2.2AI score0.00511EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/07/20 10:43 p.m.7 views

CVE-2021-2375

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.5.3 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

6.1CVSS6.3AI score0.01032EPSS
Exploits0References1
CVE
CVE
added 2021/07/20 10:43 p.m.48 views

CVE-2021-2375

CVE-2021-2375 affects Oracle JD Edwards EnterpriseOne Tools (Web Runtime) up to and including version 9.2.5.3. An unauthenticated attacker with network access via HTTP can compromise JD Edwards EnterpriseOne Tools; attacks require user interaction. Consequences include unauthorized update/insert/...

6.1CVSS5.6AI score0.01032EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/07/20 10:43 p.m.51 views

CVE-2021-2373

CVE-2021-2373 is a vulnerability in Oracle JD Edwards EnterpriseOne Tools, specifically the Web Runtime component. Affected products/versions include JD Edwards EnterpriseOne Tools 9.2.5.3 and earlier. The issue enables a low-privileged, network-accessible attacker (HTTP) to compromise data in th...

5.4CVSS4.8AI score0.00511EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/07/20 10:43 p.m.11 views

CVE-2021-2373

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime. Supported versions that are affected are 9.2.5.3 and Prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne...

5.4CVSS6AI score0.00511EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/20 12:0 a.m.5 views

Oracle JD Edwards Products安全漏洞

Oracle JD Edwards Products is a fully integrated suite of enterprise resource planning applications ERP from Oracle Corporation USA. JD Edwards EnterpriseOne Tools is one of the components used to install, update, and manage JD Edwards EnterpriseOne applications. jD Edwards in Oracle JD Edwards A...

6.1CVSS5.7AI score0.01032EPSS
Exploits0References3
Rows per page
Query Builder