PT-2026-49993

Name of the Vulnerable Software and Affected Versions Oracle Siebel CRM Siebel Apps - Marketing versions 17.0 through 26.5 Description An issue in the Marketing component of the Siebel Apps - Marketing product allows a low privileged attacker with network access via HTTP to compromise the system...

Oracle Siebel Server (April 2024 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the April 2024 CPU advisory. - Vulnerability in the Siebel Apps - Public Sector product of Oracle Siebel CRM component: Other Google Guava. Supported versions that are affected are 24.2...

Oracle Siebel Server <= 20.7 (October 2020 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2020 CPU advisory. - Vulnerability in the Siebel Apps - Marketing product of Oracle Siebel CRM component: Mktg/Email Mktg Stand-Alone Apache Commons File Upload. Th...

Oracle Siebel Server (October 2022 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2022 CPU advisory. - Vulnerability in the Siebel Apps - Marketing product of Oracle Siebel CRM component: Marketing XMLBeans. Supported versions that are affected a...

Oracle Siebel CRM <= 24.7 (October 2024 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2024 CPU advisory. - Vulnerability in the Siebel CRM Integration product of Oracle Siebel CRM component: EAI Apache Tomcat. Supported versions that are affected are...

Vulnerabilities fixed in Oracle Siebel Suite

Oracle has fixed vulnerabilities in Siebel CRM and Siebel Apps. The vulnerabilities potentially enable a malicious party to execute attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Remote code execution User rights Access to sensitive data Acce...

Design/Logic Flaw

Unspecified vulnerability in the Siebel Apps - Customer Order Management component in Oracle Siebel CRM 16.1 allows remote authenticated users to affect confidentiality via unknown vectors...

CVE-2012-3172

Unspecified vulnerability in the Siebel CRM component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect availability via unknown vectors related to Siebel Apps - Multi-channel Technologies...

Code injection

Unspecified vulnerability in the Siebel CRM component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect availability via unknown vectors related to Siebel Apps - Multi-channel Technologies...

Code injection

Unspecified vulnerability in the Siebel Apps - Marketing component in Oracle Siebel CRM 8.0.0 allows remote attackers to affect integrity via unknown vectors related to Email Marketing...