Lucene search
K

60 matches found

OSV
OSV
added 2023/08/08 1:15 a.m.6 views

CVE-2023-37491

The ACL Access Control List of SAP Message Server - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, RNL64UC 7.22, RNL64UC 7.22EXT, RNL64UC 7.53, KRNL64NUC 7.22, KRNL64NUC 7.22EXT, can be bypassed in certain conditions, which may enable an authenticated malicious user to enter the...

8.8CVSS5.8AI score0.0044EPSS
Exploits0References2
OSV
OSV
added 2023/07/18 9:15 p.m.2 views

CVE-2023-22042

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.3-12.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...

6.1CVSS7.3AI score0.00363EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/07/19 10:15 p.m.6 views

CVE-2022-21555

Vulnerability in the MySQL Shell for VS Code product of Oracle MySQL component: Shell: GUI. Supported versions that are affected are 1.1.8 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Shell for VS Code executes to...

4.2CVSS6.6AI score0.00226EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/04/19 9:15 p.m.7 views

CVE-2022-21481

Vulnerability in the PeopleSoft Enterprise FIN Cash Management product of Oracle PeopleSoft component: Financial Gateway. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...

5.4CVSS6.7AI score0.00483EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/04/19 9:15 p.m.5 views

CVE-2022-21419

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware component: Visual Analyzer. Supported versions that are affected are 5.5.0.0.0 and 5.9.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

6.1CVSS6.7AI score0.00651EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/19 9:15 p.m.5 views

CVE-2022-21419

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware component: Visual Analyzer. Supported versions that are affected are 5.5.0.0.0 and 5.9.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

6.1CVSS6.7AI score0.00651EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/04/05 3:15 p.m.4 views

CVE-2022-26986

SQL Injection in ImpressCMS 1.4.3 and earlier allows remote attackers to inject into the code in unintended way, this allows an attacker to read and modify the sensitive information from the database used by the application. If misconfigured, an attacker can even upload a malicious web shell to...

8.5CVSS6.1AI score0.04146EPSS
Exploits4References3
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.7 views

CVE-2022-21402

Vulnerability in the Oracle Communications Operations Monitor product of Oracle Communications component: Mediation Engine. Supported versions that are affected are 3.4, 4.2, 4.3, 4.4 and 5.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

4.9CVSS6.8AI score0.00529EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.12 views

CVE-2022-21361

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Sample apps. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic...

6.1CVSS6.7AI score0.00946EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/01/20 3:15 p.m.6 views

CVE-2021-2043

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Portal. Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...

6.1CVSS6.8AI score0.00972EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.5 views

CVE-2020-14898

Vulnerability in the Oracle Application Express Packaged Apps component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromis...

5.4CVSS7.3AI score
Exploits0References1
CNVD
CNVD
added 2020/07/15 12:0 a.m.3 views

Siemens SICAM MMU, SGU and T Sensitive Information Disclosure Vulnerability

SICAM T is a digital measurement sensor that allows the measurement of power in the non-electrical network in a single unit.ICAM-MMU Measurement and Monitoring Unit is a power monitoring unit that allows the measurement of power in the grid in a single unit.SICAM SGU Discontinued is a Smart Grid...

8.1CVSS6.8AI score0.00523EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/25 1:25 a.m.15 views

CVE-2020-5555

Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to read and write data of the files placed in the same directory where it is placed via unspecified vector due to the improper input validation issue...

9.2AI score0.01283EPSS
Exploits0References1
OSV
OSV
added 2019/04/25 9:29 p.m.5 views

CVE-2019-11488

Incorrect Access Control in the Account Access / Password Reset Link in SimplyBook.me Enterprise before 2019-04-23 allows Unauthorized Attackers to READ/WRITE Customer or Administrator data via a persistent HTTP GET Request Hash Link Replay, as demonstrated by a login-link from the browser histor...

8.1CVSS5.8AI score0.0154EPSS
Exploits1References2
OSV
OSV
added 2019/04/23 7:32 p.m.3 views

CVE-2019-2719

Vulnerability in the Oracle Knowledge component of Oracle Siebel CRM subcomponent: Web Applications InfoCenter. Supported versions that are affected are 8.5.1.0 - 8.5.1.7, 8.6.0 and 8.6.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

6.1CVSS6.6AI score0.0108EPSS
Exploits0References1
OSV
OSV
added 2019/01/16 7:30 p.m.3 views

CVE-2019-2403

Vulnerability in the Oracle Hospitality Simphony component of Oracle Food and Beverage Applications. The supported version that is affected is 2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality Simphony. Successful...

6.5CVSS6.7AI score0.0117EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/12/26 8:0 p.m.21 views

CVE-2018-18536

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges...

7.6AI score0.00575EPSS
Exploits3References4
CNVD
CNVD
added 2018/11/08 12:0 a.m.3 views

Cisco Energy Management Suite XML External Entity Injection Vulnerability

Cisco Energy Management Suite is the United States Cisco Cisco company's set of energy management suite. The product is mainly used to manage network equipment such as energy management. An XML external entity injection vulnerability exists in the web-based user interface of the Cisco Energy...

7.3CVSS7.1AI score0.02008EPSS
Exploits1References1
OSV
OSV
added 2018/10/17 1:31 a.m.5 views

CVE-2018-3132

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: Rich Text Editor. Supported versions that are affected are 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

6.1CVSS7.3AI score0.01563EPSS
Exploits0References3
OSV
OSV
added 2018/07/18 1:29 p.m.7 views

CVE-2018-3024

Vulnerability in the Oracle Banking Payments component of Oracle Financial Services Applications subcomponent: Payments Core. Supported versions that are affected are 12.2.0, 12.3.0, 12.4.0, 12.5.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via...

5.4CVSS7.3AI score0.01236EPSS
Exploits0References3
Rows per page
Query Builder