CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

8.4CVSS7.3AI score0.00384EPSS

CVE-2017-10398

Vulnerability in the Oracle Hospitality Cruise Fleet Management component of Oracle Hospitality Applications subcomponent: BaseMasterPage. The supported version that is affected is 9.0.2.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Orac...

Exploits0References2

7.3CVSS5.8AI score0.01515EPSS

CVE-2017-10391

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware subcomponent: Administration. Supported versions that are affected are 3.0.1 and 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GlassFish...

4.8CVSS7.3AI score0.01015EPSS

CVE-2017-10386

Vulnerability in the Java Advanced Management Console component of Oracle Java SE subcomponent: Server. The supported version that is affected is Java Advanced Management Console: 2.7. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Java...

Exploits0References4

OSV•added 2017/10/19 5:29 p.m.•0 views

CVE-2017-10381

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: PIA Core Technology. Supported versions that are affected are 8.54, 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

6.1CVSS7.3AI score

4.7CVSS7.3AI score0.0134EPSS

CVE-2017-10382

OSV•added 2017/10/19 5:29 p.m.•3 views

CVE-2017-10400

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware subcomponent: Administration Graphical User Interface. The supported version that is affected is 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.4CVSS5.8AI score0.01212EPSS

7.1CVSS5.8AI score0.0159EPSS

CVE-2017-10363

Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications subcomponent: Security. Supported versions that are affected are 11.3, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileg...

9.9CVSS5.8AI score0.05691EPSS

CVE-2017-10352

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware subcomponent: WLS - Web Services. The supported version that is affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with netwo...

Exploits0References4

8.7CVSS7.3AI score0.01171EPSS

CVE-2017-10372

Vulnerability in the Oracle Hospitality Guest Access component of Oracle Hospitality Applications subcomponent: Base. Supported versions that are affected are 4.2.0 and 4.2.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle...

Exploits0References2

OSV•added 2017/10/19 5:29 p.m.•3 views

CVE-2017-10354

Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub component of Oracle PeopleSoft Products subcomponent: Enterprise Portal. The supported version that is affected is 9.1.00. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

8.2CVSS7.3AI score

6.4CVSS7.3AI score0.01154EPSS

CVE-2017-10358

Vulnerability in the Oracle Hyperion Financial Reporting component of Oracle Hyperion subcomponent: Workspace. The supported version that is affected is 11.1.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Hyperion Financial...

6.1CVSS7.3AI score0.01212EPSS

CVE-2017-10368

Vulnerability in the PeopleSoft Enterprise SCM eProcurement component of Oracle PeopleSoft Products subcomponent: Manage Requisition Status. Supported versions that are affected are 9.1.00 and 9.2.00. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

8.2CVSS7.3AI score0.01756EPSS

CVE-2017-10360

Vulnerability in the Oracle WebCenter Content component of Oracle Fusion Middleware subcomponent: Content Server. Supported versions that are affected are 11.1.1.9.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

9.1CVSS7.3AI score0.02531EPSS

CVE-2017-10329

Vulnerability in the Oracle Global Order Promising component of Oracle E-Business Suite subcomponent: Reschedule Sales Orders. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attack...

OSV•added 2017/10/19 5:29 p.m.•4 views

CVE-2017-10322

Vulnerability in the Oracle Common Applications Calendar component of Oracle E-Business Suite subcomponent: Applications Calendar. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS7.3AI score0.01851EPSS

5.4CVSS7.3AI score0.01031EPSS

CVE-2017-10340

Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications subcomponent: Import/Export. Supported versions that are affected are 2.8 and 2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

Exploits0References2

6.1CVSS7.3AI score0.0147EPSS

CVE-2017-10327

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: Query. Supported versions that are affected are 8.54, 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

CVE-2017-10326

8.2CVSS7.3AI score