Commerce Guided Search And Experience Manager Security Vulnerabilities and Issues — Commerce Guided Search And Experience Manager CVE List

cve

CVE-2021-20190

A flaw was found in jackson-databind before 2.9.10.7. FasterXML mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

8.1CVSS

7.6AI Score

0.004EPSS

2021-01-19 05:15 PM

210

13

cve

CVE-2021-2345

Vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager product of Oracle Commerce (component: Tools and Frameworks). The supported version that is affected is 11.3.1.5. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to c...

5.4CVSS

4.9AI Score

0.001EPSS

2021-07-21 03:15 PM

28

cve

CVE-2021-2346

Vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager product of Oracle Commerce (component: Tools and Frameworks). The supported version that is affected is 11.3.1.5. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to c...

5.4CVSS

4.9AI Score

0.001EPSS

2021-07-21 03:15 PM

27

cve

CVE-2021-2348

Vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager product of Oracle Commerce (component: Tools and Frameworks). The supported version that is affected is 11.3.1.5. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to c...

4.3CVSS

3.4AI Score

0.001EPSS

2021-07-21 03:15 PM

25

Commerce Guided Search And Experience Manager Security Vulnerabilities - 2021