Oracle E-Business Suite (January 2026 CPU)

The versions of Oracle E-Business Suite installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2026 CPU advisory. - Vulnerability in the Oracle Field Service product of Oracle E-Business Suite component: HTML Dispatch Center Apache Commons BeanUtils...

CVE-2025-62210

Improper neutralization of input during web page generation 'cross-site scripting' in Dynamics 365 Field Service online allows an authorized attacker to perform spoofing over a network...

EUVD-2025-93399

Improper neutralization of input during web page generation 'cross-site scripting' in Dynamics 365 Field Service online allows an authorized attacker to perform spoofing over a network...

EUVD-2025-93430

Improper neutralization of input during web page generation 'cross-site scripting' in Dynamics 365 Field Service online allows an authorized attacker to perform spoofing over a network...

CVE-2025-62210 Dynamics 365 Field Service (online) Spoofing Vulnerability

...

CVE-2023-21853

Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite component: Synchronization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field...

CVE-2024-21271

Vulnerability in the Oracle Field Service product of Oracle E-Business Suite component: Field Service Engineer Portal. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Field...

KLA71258 PE vulnerability in Microsoft Dynamics

An elevation of privilege was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2024-38182 Related products Microsoft-Dynamics-365 CVE list CVE-2024-38182 critical Solution Install necessary updates from the KB section, that ar...

CVE-2024-21394

Dynamics 365 Field Service Spoofing Vulnerability...

CVE-2024-21394

CVE-2024-21394 is a spoofing vulnerability in Microsoft Dynamics 365 Field Service (on-premises) where an attacker can remotely spoof the user interface. The CVSS 3.1 vector indicates network access, low attack complexity, low privileges required, but user interaction is needed, with confidential...

CVE-2024-21394 Dynamics 365 Field Service Spoofing Vulnerability

...

CVE-2024-21394 Dynamics 365 Field Service Spoofing Vulnerability

...

Dynamics 365 Field Service Spoofing Vulnerability

...

CVE-2021-2362

Vulnerability in the Oracle Field Service product of Oracle E-Business Suite component: Wireless. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Field Service. Successful...

Oracle E-Business Suite Multiple Vulnerabilities (Jan 2020 CPU)

The version of Oracle E-Business installed on the remote host is missing the January 2020 Oracle Critical Patch Update CPU. It is, as noted in the January 2020 Critical Patch Update advisory, affected by flaws in the following components : - Oracle Human Resources - Oracle CRM Technical Foundatio...

Oracle E-Business Suite Unauthorized Access Vulnerability (CNVD-2020-04024)

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is seamlessly integrated with a management suite.Oracle Field...

Microsoft Dynamics 365 CVE-2020-0656 Cross Site Scripting Vulnerability

Description Microsoft Dynamics 365 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

Oracle E-Business Suite Multiple Vulnerabilities (Oct 2019 CPU)

The version of Oracle E-Business installed on the remote host is missing the October 2019 Oracle Critical Patch Update CPU. It is, as noted in the October 2019 Critical Patch Update advisory, affected by flaws in the following components : - Oracle Advanced Outbound Telephony - Oracle Application...

CVE-2019-2930

CVE-2019-2930 affects Oracle E-Business Suite Field Service Wireless component. Affected versions: 12.1.1–12.1.3 and 12.2.3–12.2.8. An unauthenticated attacker with network access over HTTP can compromise Oracle Field Service; exploitation requires human interaction. Impact can include unauthoriz...

CVE-2019-2828

Vulnerability in the Oracle Field Service component of Oracle E-Business Suite subcomponent: Wireless. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...