Lucene search
K

94 matches found

Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.4 views

PT-2024-1213 · Oracle · Oracle E-Business Suite +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue is related to insufficient input validation in the Engineering Change Order component of Oracle Installed Base, part of the Oracle E-Business Suite system. This ca...

5.5CVSS7.8AI score0.0034EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.4 views

Oracle Installed Base Security Vulnerability

Oracle Installed Base is a project lifecycle management application from Oracle Corporation Oracle. It provides enterprise-wide internal lifecycle project management and tracking capabilities. A security vulnerability exists in Oracle Installed Base versions 12.2.3 through 12.2.13 of Oracle...

6.1CVSS6.7AI score0.00168EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/04/08 12:0 a.m.5 views

The vulnerability of the Instance Main component in the Oracle Installed Base centralized information storage system allows a attacker to trigger a service failure.

The vulnerability of the Instance Main component of the Oracle Installed Base centralized storage system is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to trigger a service failure using the HTTP protocol...

7.8CVSS7.3AI score0.01287EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.7 views

CVE-2022-21251

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: Instance Main. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Base...

7.8CVSS7.1AI score0.01287EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/01/19 12:15 p.m.5 views

CVE-2022-21251

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: Instance Main. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Base...

7.5CVSS5.8AI score0.01287EPSS
Exploits0References1
NVD
NVD
added 2022/01/19 12:15 p.m.27 views

CVE-2022-21251

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: Instance Main. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Base...

7.8CVSS0.01287EPSS
Exploits0References1
Prion
Prion
added 2022/01/19 12:15 p.m.21 views

Design/Logic Flaw

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: Instance Main. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Base...

7.8CVSS7.2AI score0.01287EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/01/19 11:22 a.m.29 views

CVE-2022-21251

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: Instance Main. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Base...

7.5CVSS7.2AI score0.01287EPSS
Exploits0References1
CVE
CVE
added 2022/01/19 11:22 a.m.97 views

CVE-2022-21251

CVE-2022-21251 affects Oracle E-Business Suite Installed Base (component: Instance Main) with affected versions 12.2.3–12.2.11. The vulnerability allows an unauthenticated, network-based attacker (via HTTP) to cause a hang or repeatable crash of Oracle Installed Base (DO S) as described in multip...

7.8CVSS7.3AI score0.01287EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/01/19 11:22 a.m.15 views

CVE-2022-21251

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: Instance Main. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Base...

7.5CVSS6.5AI score0.01287EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/01/18 12:0 a.m.5 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management, and other functions. A security vulnerability exists in the Oracle...

7.8CVSS7.7AI score0.01287EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/05/19 12:0 a.m.7 views

The vulnerability of the API sub-component of the Oracle Installed Base component of the Oracle E-Business Suite allows a perpetrator to gain unauthorized access to the device.

The vulnerability of the API sub-component of the Oracle Installed Base component in the Oracle E-Business Suite system for automating business operations is related to code errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to the device...

8.5CVSS6.9AI score0.00931EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/04/22 10:15 p.m.4 views

CVE-2021-2231

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: APIs. The supported version that is affected is 12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Installed Base. Successful attacks of...

8.1CVSS6.8AI score0.00931EPSS
Exploits0References1
NVD
NVD
added 2021/04/22 10:15 p.m.19 views

CVE-2021-2231

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: APIs. The supported version that is affected is 12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Installed Base. Successful attacks of...

8.1CVSS0.00931EPSS
Exploits0References1
CVE
CVE
added 2021/04/22 9:53 p.m.72 views

CVE-2021-2231

CVE-2021-2231 affects Oracle E‑Business Suite, Oracle Installed Base (API component) version 12.1.3. The vulnerability is exploitable remotely over HTTP by a low‑privileged attacker, potentially leading to unauthorized data creation/deletion/modification or full access to Oracle Installed Base da...

8.1CVSS8.2AI score0.00931EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2021/04/22 12:0 a.m.9 views

Unspecified Vulnerability in Oracle Installed Base

Oracle Installed Base is a project lifecycle management application from Oracle Corporation Oracle. It provides enterprise-wide internal lifecycle project management and tracking capabilities. A security vulnerability exists in the APIs component of Oracle Installed Base version 12.1.3. An attack...

8.1CVSS6.5AI score0.00931EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/20 12:0 a.m.6 views

Oracle Installed Base 安全漏洞

Oracle Installed Base is a project lifecycle management application from Oracle Corporation Oracle. It provides enterprise-wide internal lifecycle project management and tracking capabilities. A security vulnerability exists in the APIs component of Oracle Installed Base version 12.1.3. An attack...

8.1CVSS5.7AI score0.00931EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/02/09 12:0 a.m.4 views

The vulnerability of the APIs of the Oracle Installed Base information storage center component of the Oracle E-Business Suite, which exists due to insufficient verification of input data, allows a perpetrator to modify the data.

The vulnerability of the APIs of the Oracle Installed Base information storage center component in the Oracle E-Business Suite exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to modify, add, or...

4.7CVSS6.4AI score0.01066EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/01/20 3:15 p.m.4 views

CVE-2021-2023

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: APIs. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Bas...

4.7CVSS6.7AI score0.01066EPSS
Exploits0References1
NVD
NVD
added 2021/01/20 3:15 p.m.25 views

CVE-2021-2023

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite component: APIs. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Bas...

4.7CVSS4AI score0.01066EPSS
Exploits0References1
Rows per page
Query Builder