CVE-2018-2566

Vulnerability in the Integrated Lights Out Manager ILOM component of Oracle Sun Systems Products Suite subcomponent: Remote Console Application. Supported versions that are affected are 3.x and 4.x. Difficult to exploit vulnerability allows low privileged attacker with network access via TLS to...

CVE-2018-2570

Vulnerability in the Oracle Communications Unified Inventory Management component of Oracle Communications Applications subcomponent: Portal. Supported versions that are affected are 7.2.4.2.x and 7.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

CVE-2018-2574

Vulnerability in the Siebel CRM Desktop component of Oracle Siebel CRM subcomponent: Outlook Client. Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel CRM Desktop. Successful...

CVE-2017-10301

Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub component of Oracle PeopleSoft Products subcomponent: Enterprise Portal. The supported version that is affected is 9.1.00. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

CVE-2017-10068

Vulnerability in the Oracle Business Intelligence Enterprise Edition component of Oracle Fusion Middleware subcomponent: Analytics Web Dashboards. The supported version that is affected is 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

Design/Logic Flaw

Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications subcomponent: Core module. Supported versions that are affected are 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromi...

Design/Logic Flaw

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: SPARC Platform. Supported versions that are affected are 10 and 11.3. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise...

Design/Logic Flaw

Vulnerability in the Oracle WebCenter Portal component of Oracle Fusion Middleware subcomponent: WebCenter Spaces Application. Supported versions that are affected are 11.1.1.9.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

Design/Logic Flaw

Vulnerability in the Application Express component of Oracle Database Server. The supported version that is affected is Prior to 5.1.4.00.08. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Application Express. Successful attacks require...

CVE-2018-2655

Vulnerability in the Oracle Work in Process component of Oracle E-Business Suite subcomponent: Assemble/Configure to Order. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker...

CVE-2018-2679

Vulnerability in the Oracle Financial Services Profitability Management component of Oracle Financial Services Applications subcomponent: User Interface. Supported versions that are affected are 6.1.x and 8.0.x. Easily exploitable vulnerability allows low privileged attacker with network access v...

CVE-2018-2571

Vulnerability in the Oracle Communications Unified Inventory Management component of Oracle Communications Applications subcomponent: Portal. Supported versions that are affected are 7.2.4.2.x and 7.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

CVE-2018-2620

Vulnerability in the Primavera Unifier component of Oracle Construction and Engineering Suite subcomponent: Platform. Supported versions that are affected are 10.x, 15.x, 16.x and 17.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

CVE-2018-2564

Vulnerability in the Oracle WebCenter Content component of Oracle Fusion Middleware subcomponent: Content Server. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter...

CVE-2018-2564

Vulnerability in the Oracle WebCenter Content component of Oracle Fusion Middleware subcomponent: Content Server. The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter...

CVE-2018-2679

The CVE-2018-2679 entry concerns Oracle Financial Services Profitability Management’s User Interface in Oracle Financial Services Applications. Affected are versions 6.1.x and 8.0.x. The vulnerability is exploitable by a network-based, low-privilege attacker over HTTP, enabling unauthorized creat...

CVE-2018-2707

Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications subcomponent: Core module. Supported versions that are affected are 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromi...

CVE-2018-2620

Vulnerability in the Primavera Unifier component of Oracle Construction and Engineering Suite subcomponent: Platform. Supported versions that are affected are 10.x, 15.x, 16.x and 17.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

CVE-2018-2592

The CVE-2018-2592 vulnerability affects the Oracle Financial Services Balance Sheet Planning component of Oracle Financial Services Applications, specifically the User Interface subcomponent in version 8.0.x. The issue is exploitable over a network via HTTP by a low-privilege attacker, potentiall...

CVE-2018-2721

Vulnerability in the Oracle Financial Services Price Creation and Discovery component of Oracle Financial Services Applications subcomponent: User Interface. The supported version that is affected is 8.0.5. Easily exploitable vulnerability allows low privileged attacker with network access via HT...