CVE-2020-2695

Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle PeopleSoft component: Approval Framework. Supported versions that are affected are 9.1 and 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

CVE-2020-2695

CVE-2020-2695 affects Oracle PeopleSoft Enterprise CC Common Application Objects (component: Approval Framework). Affected versions are 9.1 and 9.2. The vulnerability allows an unauthenticated, network-accessible attacker via HTTP to read data from a subset of the CC Common Application Objects, p...

CVE-2020-2695

Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle PeopleSoft component: Approval Framework. Supported versions that are affected are 9.1 and 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

CVE-2020-2673

CVE-2020-2673 affects Oracle Application Testing Suite (Oracle Flow Builder) with affected versions 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. The vulnerability allows an unauthenticated attacker over HTTP to access critical data or take full control of the Oracle ATS exposed data, per CVSSv3.0 b...

CVE-2020-2674

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ...

CVE-2020-2674

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ...

CVE-2020-2664

CVE-2020-2664 affects Oracle Solaris 11 FFilesystem; vulnerability details indicate a locally exploitable issue where a low-privilege attacker with logon and human interaction could compromise Solaris, with potential unauthorized read/update/delete of data and partial confidentiality/integrity im...

CVE-2020-2669

Vulnerability in the Oracle Email Center product of Oracle E-Business Suite component: Message Display. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Ema...

CVE-2020-2680

Vulnerability in the Oracle Solaris product of Oracle Systems component: Filesystem. The supported version that is affected is 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. While th...

CVE-2020-2682

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ...

CVE-2020-2663

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: PIA Core Technology. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

CVE-2020-2645

Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Connector Framework. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

CVE-2020-2660

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

CVE-2020-2648

CVE-2020-2648 concerns Oracle Retail Customer Management and Segmentation Foundation (Internal Operations) 16.0. The vulnerability affects the product’s Internal Operations component; exploitation requires physical access and can lead to takeover of the Oracle Retail Foundation per CVSS 3.0 (Vect...

CVE-2020-2648

Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications component: Internal Operations. The supported version that is affected is 16.0. Easily exploitable vulnerability allows physical access to compromise Oracle Retail Customer...

CVE-2020-2646

Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Command Line Interface. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

CVE-2020-2646

Oracle CVE-2020-2646 affects Enterprise Manager Base Platform, Command Line Interface component, with vulnerable versions 12.1.0.5, 13.2.0.0 and 13.3.0.0. The vulnerability enables a low-privileged, network-accessible attacker (via HTTP) to modify and read data after user interaction; base impact...

CVE-2020-2640

Vulnerability in the Enterprise Manager for Oracle Database product of Oracle Enterprise Manager component: Target Management. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

CVE-2020-2628

CVE-2020-2628 affects Oracle Enterprise Manager Base Platform (Host Management) with affected versions 12.1.0.5, 13.2.0.0 and 13.3.0.0. The vulnerability allows a high-privilege attacker with network access via HTTP to compromise the Enterprise Manager Base Platform, potentially leading to unauth...

CVE-2020-2641

Vulnerability in the Enterprise Manager for Oracle Database product of Oracle Enterprise Manager component: Discovery Framework. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP ...