324 matches found
Design/Logic Flaw
Vulnerability in the Enterprise Manager Base Platform component of Oracle Enterprise Manager Grid Control subcomponent: UI Framework. Supported versions that are affected are 12.1.0, 13.1.0 and 13.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
Oracle Enterprise Manager Base Platform Remote Vulnerability
Oracle Enterprise Manager Grid Control is a suite of systems management software from Oracle USA. The software provides centralized monitoring, lifecycle management, and other functions for the Oracle IT architecture.Oracle Enterprise Manager Base Platform is one of the system management platform...
Oracle Enterprise Manager Grid Control Multiple Vulnerabilities (July 2017 CPU) (httpoxy)
The version of Oracle Enterprise Manager Grid Control installed on the remote host is missing a security patch. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the Bouncy Castle Java library due to improper validation of a point within the elliptic curve. An...
CVE-2017-3325
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI. The supported version that is affected is 16.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks require...
CVE-2017-3264
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: Open UI. The supported version that is affected is 16.1. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks of th...
CVE-2017-3264
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: Open UI. The supported version that is affected is 16.1. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks of th...
Code injection
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI. The supported version that is affected is 16.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks require...
CVE-2017-3325
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI. The supported version that is affected is 16.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks require...
CVE-2017-3264
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: Open UI. The supported version that is affected is 16.1. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks of th...
CVE-2017-3325
Oracle Siebel CRM 16.1.x is affected by CVE-2017-3325 in the Siebel UI Framework (subcomponent: EAI). The connected NASL/Tenable entry confirms additional related issues (CVE-2017-3330 and CVE-2017-3264) within the same CPU advisory. The vulnerability allows an unauthenticated attacker to access ...
CVE-2017-3330
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: Open UI. The supported version that is affected is 16.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel UI Framework. Successful attacks require...
CVE-2017-3264
CVE-2017-3264 affects Oracle Siebel CRM 16.1 and specifically targets the Siebel UI Framework, under the Open UI subcomponent. The vulnerability is described as allowing a low-privileged, network-accessible attacker (via HTTP) to compromise Siebel UI Framework, potentially leading to unauthorized...
Oracle Siebel Remote Vulnerability
Oracle Siebel is a customer relationship management software. Oracle Siebel has a remote security vulnerability in Siebel UI Framework. The vulnerability can be exploited by an attacker via 'HTTP' and the 'OpenUI' subcomponent is affected...
CVE-2016-5560
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 16.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to OpenUI...
Design/Logic Flaw
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 16.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to OpenUI...
CVE-2016-5560
CVE-2016-5560 affects Oracle Siebel CRM, specifically the Siebel UI Framework component (OpenUI) in Siebel CRM 16.1. The vulnerability allows remote authenticated users to affect confidentiality and integrity via OpenUI vectors. The available connected sources corroborate OpenUI exposure, but do ...
CVE-2016-5560
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 16.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to OpenUI...
Unspecified Vulnerability in Oracle Siebel CRM Siebel UI Framework Component (CNVD-2016-09894)
Oracle Siebel CRM is the United States Oracle Oracle company's set of customer relationship management solutions, which includes sales management, marketing management, customer service systems, call centers and other modules. A remote security vulnerability exists in the OpenUI subcomponent of t...
Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (July 2016 CPU)
The version of Oracle Enterprise Manager Cloud Control installed on the remote host is affected by multiple vulnerabilities in the Enterprise Manager Base Platform component : - Multiple flaws exist in the OpenSSL library bundled in the Discovery Framework subcomponent, specifically in the...
CVE-2016-5468
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality and integrity via vectors related to EAI, a different vulnerability than CVE-2016-5451...