324 matches found
CVE-2019-2857
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI. Supported versions that are affected are 19.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel UI Framework. Successful...
Juniper Junos Space < 17.2R2 Persistent XSS Vulnerability (JSA10881)
According to its self-reported version number, the version of Junos Space running on the remote device is 17.2R2, and is therefore affected by a persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director. A remote authenticated attacker can exploit tha...
Oracle Siebel CRM Siebel UI Framework Component Access Control Error Vulnerability
Oracle Siebel CRM is the United States Oracle Oracle company's set of customer relationship management solutions. The program includes sales management, marketing management, customer service systems, call center modules. Siebel UI Framework is one of the user interface framework components. A...
CVE-2019-1743 Cisco IOS XE Software Arbitrary File Upload Vulnerability
A vulnerability in the web UI framework of Cisco IOS XE Software could allow an authenticated, remote attacker to make unauthorized changes to the filesystem of the affected device. The vulnerability is due to improper input validation. An attacker could exploit this vulnerability by crafting a...
Unspecified Vulnerability in Oracle Siebel CRM Siebel UI Framework Component (CNVD-2019-39882)
Oracle Siebel CRM is a set of customer relationship management solutions from Oracle Oracle. The solution includes modules for sales management, marketing management, customer service systems, call centers, and more. An unspecified vulnerability exists in the Oracle Siebel CRM Siebel UI Framework...
Code injection
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI. Supported versions that are affected are 18.7, 18.8 and 18.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI Framework...
CVE-2018-3059
Oracle Siebel CRM Siebel UI Framework (UIF Open UI) is affected by CVE-2018-3059 in versions 18.7–18.9. The vulnerability allows an unauthenticated attacker with network access via HTTP to interact with Siebel UI Framework, with the CVSS 3.0 base score indicating confidentiality and integrity imp...
CVE-2018-3059
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI. Supported versions that are affected are 18.7, 18.8 and 18.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI Framework...
Cross site scripting
A persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director may allow authenticated users to inject persistent and malicious scripts. This may allow stealing of information or performing actions as a different user when other users access the Security...
CVE-2018-0047 Junos Space Security Director: XSS vulnerability in web administration
A persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director may allow authenticated users to inject persistent and malicious scripts. This may allow stealing of information or performing actions as a different user when other users access the Security...
CVE-2018-0047
CVE-2018-0047 describes a persistent cross-site scripting (XSS) vulnerability in the UI framework used by Juniper Networks Junos Space Security Director. A remote attacker with authentication can inject persistent scripts that may exfiltrate information or perform actions as another user when oth...
CVE-2018-2959
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI. The supported version that is affected is 18.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks...
Code injection
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI. The supported version that is affected is 18.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks...
CVE-2018-2959
CVE-2018-2959 affects Oracle Siebel CRM’s Siebel UI Framework – UIF Open UI . The vulnerability targets version 18.0 and can be triggered by an unauthenticated attacker over HTTP to access or modify data within the Siebel UI Framework. The exposed impact, as described, includes potential unauthor...
CVE-2018-2750
Vulnerability in the Enterprise Manager Base Platform component of Oracle Enterprise Manager Products Suite subcomponent: UI Framework. The supported version that is affected is 12.1.0.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
Unspecified Vulnerability in Oracle Enterprise Manager Base Platform
Oracle Enterprise Manager Products Suite is a set of Oracle's on-premise management platform. Enterprise Manager Base Platform is one of the system management platform components. A security vulnerability exists in the UI Framework subcomponent of the Enterprise Manager Base Platform component in...
Information disclosure
A information disclosure vulnerability in the Android framework ui framework. Product: Android. Versions: 8.0. ID: A-66244132...
Vulnerability in the UI framework of the Android operating system, which allows attackers to enhance their privileges and affect the confidentiality, integrity, and accessibility of data.
The vulnerability in the Android operating system’s UI framework is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges and compromise the confidentiality, integrity, and accessibility of data...
CVE-2017-10333
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI. Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel UI Framework. While the vulnerabilit...
CVE-2017-10333
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI. Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel UI Framework. While the vulnerabilit...