Lucene search
K

55 matches found

OSV
OSV
added 2024/07/16 11:15 p.m.7 views

CVE-2024-21150

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime SEC. Supported versions that are affected are Prior to 9.2.8.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

6.1CVSS7.3AI score0.00309EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.8 views

PT-2023-9320 · Oracle · Jd Edwards Enterpriseone Tools

Name of the Vulnerable Software and Affected Versions: JD Edwards EnterpriseOne Tools versions prior to 9.2.8.2 Description: The issue is related to insufficient input validation in the Web Runtime SEC component. It allows an unauthenticated attacker with network access via HTTP to compromise JD...

6.4CVSS7.2AI score0.00309EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/07/28 12:0 a.m.7 views

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools system for resource management allows a perpetrator to gain read access to data and modify it.

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools system for resource management involves errors in processing input data. Exploiting this vulnerability can allow an attacker to gain read access to data and modify it...

6.4CVSS6.8AI score0.00327EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2023/07/18 12:0 a.m.10 views

Oracle JD Edwards 安全漏洞

Oracle JD Edwards Products is a fully integrated suite of Enterprise Resource Planning ERP applications from Oracle. The product provides application modules for financial management, project management, and asset lifecycle management. A security vulnerability exists in Oracle JD Edwards' JD...

6.1CVSS6.9AI score0.00327EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/05/12 12:0 a.m.6 views

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools, a resource management system, allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools system for resource management involves insufficient validation of input data. Exploiting this vulnerability could allow an attacker to gain read, modify, add, or delete access to data...

5.5CVSS6.6AI score0.00376EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2018/01/22 12:0 a.m.3 views

Unspecified Vulnerability in Oracle JD Edwards Products JD Edwards EnterpriseOne Tools Component

Oracle JD Edwards Products is a fully integrated suite of Enterprise Resource Planning ERP applications from Oracle, providing financial management, project management, and asset lifecycle management applications.JD Edwards EnterpriseOne Tools is one of the tool components. A security vulnerabili...

6.1CVSS6.7AI score0.00824EPSS
Exploits0References1
OSV
OSV
added 2018/01/18 2:29 a.m.5 views

CVE-2018-2659

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

6.1CVSS7.3AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2018/01/18 2:0 a.m.4 views

CVE-2018-2659

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

5.5AI score0.00824EPSS
Exploits0References2
CNVD
CNVD
added 2017/07/04 12:0 a.m.2 views

Oracle JD Edwards EnterpriseOne Tools Remote Vulnerability

Oracle JD Edwards Products is a fully integrated suite of Enterprise Resource Planning ERP applications from Oracle, providing financial management, project management, and asset lifecycle management applications.JD Edwards EnterpriseOne Tools is one of the tool components. A security vulnerabili...

6.5CVSS6.7AI score0.01371EPSS
Exploits0References1
OSV
OSV
added 2017/04/24 7:59 p.m.4 views

CVE-2017-3517

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

6.5CVSS5.8AI score
Exploits0References2
CNVD
CNVD
added 2015/04/17 12:0 a.m.3 views

Oracle JD Edwards EnterpriseOne Technology Remote Vulnerability

Oracle JD Edwards EnterpriseOne is a fully integrated suite of enterprise resource planning management software that provides application modules for financial management, project management and asset lifecycle management. A security vulnerability exists in the Web Runtime Security subcomponent o...

4CVSS6.7AI score0.01422EPSS
Exploits0References1
NVD
NVD
added 2015/04/16 4:59 p.m.20 views

CVE-2015-0475

Unspecified vulnerability in the JD Edwards EnterpriseOne Technology component in Oracle JD Edwards Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Web Runtime Security...

4CVSS5.2AI score0.01422EPSS
Exploits0References2
Prion
Prion
added 2015/04/16 4:59 p.m.14 views

Design/Logic Flaw

Unspecified vulnerability in the JD Edwards EnterpriseOne Technology component in Oracle JD Edwards Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Web Runtime Security...

4CVSS5.5AI score0.01422EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/04/16 4:0 p.m.21 views

CVE-2015-0475

Unspecified vulnerability in the JD Edwards EnterpriseOne Technology component in Oracle JD Edwards Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Web Runtime Security...

5.2AI score0.01422EPSS
Exploits0References2
CVE
CVE
added 2015/04/16 4:0 p.m.44 views

CVE-2015-0475

CVE-2015-0475 bases on an Oracle JD Edwards EnterpriseOne Technology vulnerability in the Web Runtime Security subcomponent of JD Edwards Products 9.1. CNVD-2015-02642 describes a remote-authenticated path that can read data and compromise confidentiality via this subcomponent. NVD notes an unspe...

4CVSS5.3AI score0.01422EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder