CVE-2019-2732

Vulnerability in the Oracle Demantra Demand Management component of Oracle Supply Chain Products Suite subcomponent: Product Security. The supported version that is affected is 7.3.1.5.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

EUVD-2019-12372

Malware in sbrugna...

CVE-2023-21850

Summary: CVE-2023-21850 affects Oracle Demantra Demand Management (E-Business Collections) versions 12.1–12.2. The issue arises from insufficient input validation in the E-Business Collections component, allowing an unauthenticated attacker with network access over HTTP to compromise the system a...

CVE-2020-2557

Oracle Demantra Demand Management (versions 12.2.4–12.2.5.1) is vulnerable due to insufficient access control in the Security component, allowing an unauthenticated attacker with network access over HTTP to compromise data. Successful attacks can result in unauthorized update, insert, or delete o...

CVE-2019-2732

Vulnerability in the Oracle Demantra Demand Management component of Oracle Supply Chain Products Suite subcomponent: Product Security. The supported version that is affected is 7.3.1.5.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

CVE-2019-2733

Vulnerability in the Oracle Demantra Demand Management component of Oracle Supply Chain Products Suite subcomponent: Product Security. The supported version that is affected is 7.3.1.5.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

CVE-2019-2732

The CVE-2019-2732 entry concerns Oracle Demantra Demand Management, a component of Oracle Supply Chain Products Suite. Affected version: 7.3.1.5.2. Description and Red Hat/CVE records indicate an unauthenticated, network-accessible vulnerability via HTTP that can yield unauthorized read access to...

CVE-2019-2733

CVE-2019-2733 affects Oracle Demantra Demand Management in Oracle Supply Chain Products Suite, subcomponent Product Security, version 7.3.1.5.2. A vulnerability allows a low-privilege, network-accessing attacker (via HTTP) to compromise the Demantra module, potentially performing unauthorized upd...

CVE-2018-3127

Vulnerability in the Oracle Demantra Demand Management component of Oracle Supply Chain Products Suite subcomponent: Product Security. Supported versions that are affected are 7.3.5 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

CVE-2013-5877

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.0, and 12.2.1 allows remote attackers to affect confidentiality via unknown vectors related to DM Others...

CVE-2013-5880

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 12.2.0, 12.2.1, and 12.2.2 allows remote attackers to affect confidentiality via unknown vectors related to DM Others...

Buffer overflow

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 12.2.0, 12.2.1, and 12.2.2 allows remote attackers to affect confidentiality via unknown vectors related to DM Others...

CVE-2014-0379

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, and 12.2.2 allows remote attackers to affect integrity via unknown vectors related to DM Others...

CVE-2014-0372

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, and 12.2.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to DM Others...

Buffer overflow

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, and 12.2.2 allows remote authenticated users to affect integrity via unknown vectors related to DM Others...

CVE-2014-0371

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, and 12.2.2 allows remote authenticated users to affect integrity via unknown vectors related to DM Others...

CVE-2014-0372

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, and 12.2.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to DM Others...

CVE-2014-0371

CVE-2014-0371 relates to Oracle Demantra Demantra 12.2.1. The connected PacketStorm entry documents a Reflective Cross‑Site Scripting (XSS) vulnerability affecting Oracle Demantra 12.2.1, with a fix in 12.2.3. The exploit path involves crafted input in Demantra web pages such as editExecDefinitio...

CVE-2014-0379

CVE-2014-0379 affects Oracle Demantra (Demantra 12.2.1). Connected documents indicate a stored XSS in TaskSender that could allow an authenticated user’s browser to execute script, potentially enabling session hijacking and data modification. Fixed in Demantra 12.2.3 per the packetstorm entry; Or...

CVE-2013-5795

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, 12.2.2, and 12.2.3 allows remote attackers to affect confidentiality via unknown vectors related to DM Others...