CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2016-0576

Malware in sbrugna...

5CVSS7.4AI score0.01831EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 9:2 p.m.•6 views

CVE-2021-2079

Vulnerability in the Oracle Configurator product of Oracle Supply Chain component: UI Servlet. Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Successful attack...

8.2CVSS6.5AI score0.01255EPSS

Exploits0References1

BDU FSTEC•added 2022/04/07 12:0 a.m.•5 views

The vulnerability of the UI Servlet component of the Oracle Configurator allows a attacker to gain access to read, modify, add, or delete data.

The vulnerability of the UI Servlet component of the Oracle Configurator relates to insufficient validation of input data. Exploiting this vulnerability may allow an attacker to gain access to read, modify, add, or delete data using the HTTP protocol over the network...

8.5CVSS7.6AI score0.01091EPSS

Exploits0References4Affected Software1

Tenable Nessus•added 2022/01/20 12:0 a.m.•34 views

Oracle E-Business Suite (Jan 2022 CPU)

The versions of Oracle E-Business Suite installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2022 CPU advisory. - Vulnerability in the Oracle Sourcing product of Oracle E-Business Suite component: Intelligence, RFx Creation. Supported versions that ar...

8.1CVSS6.5AI score0.28839EPSS

Exploits1References11

Prion•added 2022/01/19 12:15 p.m.•19 views

Design/Logic Flaw

Vulnerability in the Oracle Configurator product of Oracle E-Business Suite component: UI Servlet. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Configurator. Successful...

5.5CVSS8AI score0.01091EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/01/19 11:22 a.m.•22 views

CVE-2022-21255

8.1CVSS7.8AI score0.01091EPSS

Exploits0References1

CVE•added 2022/01/19 11:22 a.m.•100 views

CVE-2022-21255

CVE-2022-21255 affects Oracle E-Business Suite Configurator (UI Servlet). Affected versions are 12.2.3–12.2.11. The vulnerability allows a network-accessible, low-privilege attacker to exploit via HTTP to compromise data, enabling unauthorized creation/deletion/modification of Oracle Configurator...

8.1CVSS8.1AI score0.01091EPSS

Exploits0References1Affected Software1

BDU FSTEC•added 2021/02/05 12:0 a.m.•5 views

The vulnerability of the UI Servlet component of the Oracle Configurator allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.

The vulnerability of the UI Servlet component of the Oracle Configurator exists due to insufficient validation of input data. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gain unauthorized access to protected information or to modify, add, or delete data using...

8.5CVSS7.7AI score0.01255EPSS

Exploits0References3Affected Software1

BDU FSTEC•added 2021/02/02 12:0 a.m.•6 views

The vulnerability of the UI Servlet component of the Oracle Configurator allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.

8.5CVSS7.7AI score0.01255EPSS

Exploits0References3Affected Software1

NVD•added 2021/01/20 3:15 p.m.•15 views

CVE-2021-2079

8.2CVSS8AI score0.01255EPSS

Exploits0References1

Prion•added 2021/01/20 3:15 p.m.•15 views

Buffer overflow

5.8CVSS8.3AI score0.01255EPSS

Exploits0References1Affected Software1

Prion•added 2021/01/20 3:15 p.m.•17 views

Buffer overflow

5.8CVSS8.3AI score0.01255EPSS

Exploits0References1Affected Software1

CVE•added 2021/01/20 2:50 p.m.•48 views

CVE-2021-2080

CVE-2021-2080 affects Oracle Configurator (UI Servlet) in Oracle Supply Chain, specifically versions 12.1 and 12.2. The vulnerability can be exploited remotely over HTTP by an unauthenticated attacker; however, successful attacks require human interaction. Impact includes unauthorized access to c...

8.2CVSS8.3AI score0.01255EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/01/20 2:50 p.m.•21 views

CVE-2021-2080

8.2CVSS8.4AI score0.01255EPSS

Exploits0References1

Cvelist•added 2021/01/20 2:50 p.m.•19 views

CVE-2021-2078

8.2CVSS8.4AI score0.01255EPSS

Exploits0References1

CVE•added 2021/01/20 2:50 p.m.•50 views

CVE-2021-2079

CVE-2021-2079 affects Oracle Configurator (UI Servlet) in Oracle Supply Chain; impacted versions are 12.1 and 12.2. The issue enables network-accessible, unauthenticated access via HTTP, with user interaction required to exploit and potential for unauthorized data access and data modification. Ro...

8.2CVSS8.3AI score0.01255EPSS

Exploits0References1Affected Software1

CNVD•added 2021/01/20 12:0 a.m.•7 views

Unspecified Vulnerability in Oracle Configurator (CNVD-2021-08152)

Oracle Configurator is a sales and configuration product that provides the next generation of the latest configuration technology. An unspecified vulnerability exists in the UI Servlet component in Oracle Configurator 12.1, 12.2. An attacker could exploit this vulnerability to compromise...

8.2CVSS6.2AI score0.01255EPSS

Exploits0References1

CNVD•added 2021/01/20 12:0 a.m.•5 views

Unspecified Vulnerability in Oracle Configurator

8.2CVSS6.2AI score0.01255EPSS

Exploits0References1

CNVD•added 2021/01/20 12:0 a.m.•7 views

Unspecified Vulnerability in Oracle Configurator (CNVD-2021-07939)

8.2CVSS6.2AI score0.01255EPSS

Exploits0References1