Lucene search
K

5 matches found

securityvulns
securityvulns
added 2015/11/02 12:0 a.m.321 views

[ERPSCAN-15-029] Oracle E-Business Suite - XXE injection Vulnerability

ADVISORY INFORMATION Title: Oracle E-Business Suite - XXE injection Advisory ID: ERPSCAN-15-029 Advisory URL: http://erpscan.com/advisories/erpscan-15-029-oracle-e-business-suite-xxe-injection-vulnerability/ Date published: 21.10.2015 Vendors contacted: Oracle 2. VULNERABILITY INFORMATION Class:...

6.8CVSS6.8AI score0.03088EPSS
Exploits0
NVD
NVD
added 2015/10/21 11:59 p.m.23 views

CVE-2015-4849

Unspecified vulnerability in the Oracle Payments component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Punch-in. NOTE: the previous information is from the...

6.8CVSS5.9AI score0.03088EPSS
Exploits0References7
Cvelist
Cvelist
added 2015/10/21 11:0 p.m.28 views

CVE-2015-4849

Unspecified vulnerability in the Oracle Payments component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Punch-in. NOTE: the previous information is from the...

5.9AI score0.03088EPSS
Exploits0References7
CVE
CVE
added 2015/10/21 11:0 p.m.64 views

CVE-2015-4849

CVE-2015-4849 corresponds to an XXE injection vulnerability in Oracle E-Business Suite’s Punch-in path. The ERPScan advisory (ERPSCAN-15-029) and related sources indicate: affected product/version is Oracle E‑Business Suite 12.1.3 (likely others); vulnerable component is the Punch‑in servlet at /...

6.8CVSS6AI score0.03088EPSS
Exploits0References7Affected Software1
erpscan
erpscan
added 2015/07/17 12:0 a.m.120 views

Oracle E-Business Suite - XXE injection vulnerability

Application: E-Business Suite Vendor URL: Oracle Bugs: XXE injection Reported: 17.07.2015 Vendor response: 24.07.2015 Date of Public Advisory:20.10.2015 Reference: Oracle CPU Oct 2015 Authors: Nikita Kelesis, Ivan Chalykin, Alexey Tyurin ERPScan VULNERABILITY INFORMATION Class: XML External Entit...

6.8CVSS2.1AI score0.03088EPSS
Exploits0
Rows per page
Query Builder