Lucene search
K

274 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:18 p.m.9 views

CVE-2020-2662

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Others. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle iSupport...

8.2CVSS7.2AI score0.01314EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/05 2:17 p.m.8 views

CVE-2020-2815

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Profile. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks requi...

8.2CVSS7.2AI score0.01282EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 2:16 p.m.8 views

CVE-2020-2855

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Admin. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require...

8.2CVSS7.2AI score0.01282EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/01/24 12:0 a.m.4 views

The vulnerability of the Internal Operations sub-component of the Oracle iSupport component in the Oracle E-Business Suite automation system allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the Internal Operations sub-component of the Oracle iSupport component in the Oracle E-Business Suite exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker, operating remotely, to gain access to read, modify, add, or delete data...

5.5CVSS6.6AI score0.00163EPSS
Exploits0References3Affected Software2
NCSC
NCSC
added 2024/01/18 12:0 a.m.5 views

Vulnerabilities fixed in Oracle E-Business Suite

Oracle has fixed vulnerabilities in E-Business suite and components. A malicious party could exploit the vulnerabilities to perform attacks that could result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Manipulation of data Access to sensitive data Oracle...

6.5CVSS6.3AI score0.00493EPSS
Exploits0
OSV
OSV
added 2024/01/16 10:15 p.m.2 views

CVE-2024-20944

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Internal Operations. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle iSupport. Successful...

5.4CVSS7.3AI score0.00163EPSS
Exploits0References1
NVD
NVD
added 2024/01/16 10:15 p.m.21 views

CVE-2024-20944

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Internal Operations. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle iSupport. Successful...

5.4CVSS5.1AI score0.00163EPSS
Exploits0References1
Prion
Prion
added 2024/01/16 10:15 p.m.14 views

Design/Logic Flaw

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Internal Operations. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle iSupport. Successful...

4.9CVSS6.3AI score0.00163EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/16 9:41 p.m.42 views

CVE-2024-20944

CVE-2024-20944 affects Oracle E-Business Suite, specifically the Oracle iSupport component within the Internal Operations area. Affected are versions 12.2.3–12.2.13 . The vulnerability is exploitable over the network via HTTP by a user with low privileges, and requires user interaction. Successfu...

5.4CVSS5.2AI score0.00163EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.5 views

PT-2024-1235 · Oracle · Oracle Isupport

Name of the Vulnerable Software and Affected Versions: Oracle iSupport versions 12.2.3 through 12.2.13 Description: The issue exists due to insufficient input validation in the Internal Operations component of Oracle iSupport, part of the Oracle E-Business Suite. This allows a remote attacker to...

5.5CVSS5.5AI score0.00163EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.3 views

Oracle E-Business Suite Security Vulnerability

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle USA. The software provides customer relationship management, service management, financial management, and other capabilities. iSupport is one of the Internet-based customer suppo...

5.4CVSS6.7AI score0.00163EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.6 views

The vulnerability of the User Responsibilities component in the Oracle iSupport web application allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.

The vulnerability of the User Responsibilities component in the Oracle iSupport web application exists due to insufficient validation of input data. Exploiting this vulnerability may allow an attacker, operating remotely, to gain unauthorized access to protected information or to modify, add, or...

8.5CVSS7.7AI score0.01169EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.4 views

The vulnerability of the Shopping Cart component in the Oracle iSupport web application allows a perpetrator to gain unauthorized access to protected information or to have read, add, or delete privileges over that data.

The vulnerability of the Shopping Cart component in the Oracle iSupport web application is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information or to have read, add, or delete...

8.2CVSS7.7AI score0.01169EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/01/28 12:0 a.m.7 views

The vulnerability of the Profile component in the Oracle iSupport web application allows a perpetrator to gain unauthorized access to protected information or to have read, add, or delete privileges over that data.

The vulnerability of the Profile component in the Oracle iSupport web application is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information or to have read, add, or delete data usin...

8.2CVSS7.7AI score0.01169EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/01/20 3:15 p.m.2 views

CVE-2021-2097

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Profile. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport...

8.2CVSS7.3AI score0.01169EPSS
Exploits0References1
NVD
NVD
added 2021/01/20 3:15 p.m.17 views

CVE-2021-2097

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Profile. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport...

8.2CVSS8AI score0.01169EPSS
Exploits0References1
NVD
NVD
added 2021/01/20 3:15 p.m.16 views

CVE-2021-2083

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: User Responsibilities. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

8.2CVSS8AI score0.01169EPSS
Exploits0References1
OSV
OSV
added 2021/01/20 3:15 p.m.1 views

CVE-2021-2083

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: User Responsibilities. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

8.2CVSS7.3AI score0.01169EPSS
Exploits0References1
Prion
Prion
added 2021/01/20 3:15 p.m.9 views

Design/Logic Flaw

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: Profile. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport...

5.8CVSS8.3AI score0.01169EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/01/20 3:15 p.m.18 views

Design/Logic Flaw

Vulnerability in the Oracle iSupport product of Oracle E-Business Suite component: User Responsibilities. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

5.8CVSS8.3AI score0.01169EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder