CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnerability in the Oracle iStore product of Oracle E-Business Suite component: Shopping Cart. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore...

8.2CVSS7.3AI score0.00933EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 2:30 p.m.•11 views

CVE-2020-2881

Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite component: Preferences. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle CRM Technical...

8.2CVSS7.2AI score0.01282EPSS

Exploits1

RedhatCVE•added 2025/02/05 2:21 p.m.•10 views

CVE-2020-2835

Vulnerability in the Oracle Marketing product of Oracle E-Business Suite component: Marketing Administration. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Marketing...

8.2CVSS7.2AI score0.01282EPSS

Exploits0

IBM Security Bulletins•added 2023/05/15 5:32 p.m.•24 views

Security Bulletin: Open Source Dependency Vulnerability

Summary IBM Edge Application Manager 4.5 has resolved the vulnerability. Vulnerability Details CVEID:CVE-2020-8244 DESCRIPTION: Node.js bl module could allow a remote attacker to obtain sensitive information, caused by a buffer over-read flaw in the consume function. By sending a specially-crafte...

6.5CVSS7.4AI score0.02123EPSS

Exploits1Affected Software1

Vulnrichment•added 2022/07/19 9:8 p.m.•13 views

CVE-2022-21571

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.36. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

8.2CVSS6.8AI score0.00344EPSS

Exploits0References2

Vulnrichment•added 2022/07/19 9:6 p.m.•12 views

CVE-2022-21513

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...

8.2CVSS6.8AI score0.0027EPSS

Exploits0References1

Tenable Nessus•added 2021/10/10 12:0 a.m.•38 views

openSUSE 15 Security Update : virtualbox (openSUSE-SU-2021:0977-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:0977-1 advisory. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Pri...

8.4CVSS6.8AI score0.0331EPSS

Exploits1References45

Cvelist•added 2021/01/20 2:50 p.m.•16 views

CVE-2021-2114

Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite component: Applications Calendar. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

8.2CVSS8.5AI score0.59321EPSS

Exploits0References1

CVE•added 2021/01/20 2:50 p.m.•51 views

CVE-2021-2097

CVE-2021-2097 (Oracle iSupport, Oracle E-Business Suite) affects the Profile component in versions 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle iSupport; successful attacks require human interaction. Impac...

8.2CVSS8.4AI score0.01169EPSS

Exploits0References1Affected Software1

IBM Security Bulletins•added 2020/08/04 6:54 p.m.•24 views

Security Bulletin: CVE-2020-4481 HTTP properties vulnerable to an XXE attack

Summary HTTP properties are vulnerable to an XXE attack. This could allow files from the server host to be extracted. Vulnerability Details CVEID: CVE-2020-4481 DESCRIPTION: IBM UrbanCode Deploy UCD is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote...

8.2CVSS1.3AI score0.02046EPSS

Exploits0Affected Software1

Prion•added 2020/04/15 2:15 p.m.•16 views

Design/Logic Flaw

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: Claims. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Trade Management. Successfu...

5.8CVSS8.1AI score0.01282EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2020/04/15 1:29 p.m.•6 views

CVE-2020-2858

8.2CVSS7.3AI score0.01405EPSS

Exploits0References1

Vulnrichment•added 2020/04/15 1:29 p.m.•8 views

CVE-2020-2842

Vulnerability in the Oracle Depot Repair product of Oracle E-Business Suite component: Estimate and Actual Charges. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Depot...

8.2CVSS7.3AI score0.01282EPSS

Exploits0References1

Vulnrichment•added 2020/01/15 4:34 p.m.•8 views

CVE-2020-2669

Vulnerability in the Oracle Email Center product of Oracle E-Business Suite component: Message Display. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Ema...

8.2CVSS7.3AI score0.01314EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by