Lucene search
K
OracleCommon Applications

16 matches found

CVE
CVE
added 2017/08/08 3:0 p.m.64 views

CVE-2017-10113

CVE-2017-10113 affects Oracle E-Business Suite, Oracle Common Applications CRM User Management Framework (CRM UMF) with affected versions 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6. The vulnerability is exploitable over HTTP by an unauthenticated attacker and requires user interaction for exploitatio...

8.2CVSS8.2AI score0.01929EPSS
CVE
CVE
added 2025/04/15 8:31 p.m.64 views

CVE-2025-30716

CVE-2025-30716 affects Oracle E-Business Suite, specifically the CRM User Management Framework in the Common Applications component. Affected versions are 12.2.3–12.2.14; the vulnerability is exploitable by an unauthenticated attacker over HTTP, potentially giving unauthorized access to sensitive...

7.5CVSS7.1AI score0.006EPSS
CVE
CVE
added 2021/01/20 2:50 p.m.63 views

CVE-2021-2093

CVE-2021-2093 affects Oracle E-Business Suite, specifically the Oracle Common Applications component (CRM User Management Framework). Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability enables unauthenticated access via HTTP from a network contact; exploitation requires use...

8.2CVSS8.4AI score0.01169EPSS
CVE
CVE
added 2021/07/20 10:44 p.m.61 views

CVE-2021-2436

CVE-2021-2436 affects Oracle E-Business Suite, specifically the CRM User Management Framework within Oracle Common Applications. Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability enables unauthenticated attackers with network access via HTTP to compromise Oracle Common App...

8.2CVSS8.1AI score0.01155EPSS
CVE
CVE
added 2024/02/17 1:50 a.m.60 views

CVE-2024-20947

CVE-2024-20947 affects Oracle E-Business Suite, Oracle Common Applications (CRM User Management Framework) and impacts version 12.2.3–12.2.13. The vulnerability allows a low-privilege, network-access attacker (HTTP) to compromise Oracle Common Applications with user interaction required. Conseque...

5.4CVSS5.2AI score0.00308EPSS
CVE
CVE
added 2017/01/27 10:1 p.m.57 views

CVE-2017-3328

CVE-2017-3328 affects Oracle E-Business Suite's Oracle Common Applications (Resources Module). Affected versions are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, and 12.2.6. The flaw allows an unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications; howev...

8.2CVSS8.3AI score0.01547EPSS
CVE
CVE
added 2017/10/19 5:0 p.m.56 views

CVE-2017-10330

CVE-2017-10330 affects Oracle E-Business Suite (Oracle Common Applications, Gantt Server) with affected versions 12.1.3, 12.2.3–12.2.7. The vulnerability enables unauthenticated remote attackers to compromise data through HTTP access, with impact to confidentiality and integrity (C/H) and no avai...

9.1CVSS8.2AI score0.02531EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.55 views

CVE-2020-14717

CVE-2020-14717 affects Oracle E-Business Suite, specifically the Common Applications CRM User Management Framework . Affected versions are 12.1.3 and 12.2.3–12.2.9 . The vulnerability allows an unauthenticated attacker with network access over HTTP to compromise Oracle Common Applications. Althou...

4.7CVSS4.4AI score0.01024EPSS
CVE
CVE
added 2019/04/23 6:16 p.m.52 views

CVE-2019-2665

The CVE-2019-2665 entry describes a vulnerability in the Oracle E-Business Suite Common Applications component (CRM User Management Framework). Affected versions include 12.1.3 and 12.2.3–12.2.8. The flaw allows an unauthenticated attacker with network access over HTTP to potentially compromise O...

8.2CVSS8.1AI score0.01287EPSS
CVE
CVE
added 2017/01/27 10:1 p.m.51 views

CVE-2017-3443

CVE-2017-3443 affects Oracle E-Business Suite, Oracle Common Applications (User Interface). Affected versions: 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6. The vulnerability enables network-accessible, unauthenticated access via HTTP, with human interaction required for exploitation; i...

8.2CVSS8.3AI score0.01547EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.51 views

CVE-2020-14716

CVE-2020-14716 affects Oracle E-Business Suite, specifically the Common Applications component (CRM User Management Framework). Affected versions are 12.1.3 and 12.2.3–12.2.9 . The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Common Applicatio...

4.7CVSS4.4AI score0.00985EPSS
CVE
CVE
added 2016/01/21 2:0 a.m.50 views

CVE-2016-0562

CVE-2016-0562 pertains to Oracle E-Business Suite (Oracle Common Applications CRM User Management Framework) and affects versions 11.5.10.2, 12.1.1, 12.1.2, and 12.1.3. The vulnerability is described as unspecified, allowing remote authenticated users to affect integrity via the CRM User Manageme...

4CVSS4.8AI score0.0123EPSS
CVE
CVE
added 2017/01/27 10:1 p.m.50 views

CVE-2017-3326

CVE-2017-3326 affects Oracle E-Business Suite, Oracle Common Applications component (Role Summary) across versions 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications, wi...

8.2CVSS8.3AI score0.01795EPSS
CVE
CVE
added 2017/01/27 10:1 p.m.50 views

CVE-2017-3327

CVE-2017-3327 affects Oracle E-Business Suite (Oracle Common Applications, Resources Module). Affected versions are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, and 12.2.6. The vulnerability resides in Oracle Common Applications and is exploitable via HTTP by an unauthenticated attacker over t...

8.2CVSS8.3AI score0.01795EPSS
CVE
CVE
added 2020/07/15 5:34 p.m.50 views

CVE-2020-14688

The CVE covers a vulnerability in Oracle E-Business Suite’s Common Applications component (CRM User Management Framework). Affected: Oracle E-Business Suite versions 12.1.3 and 12.2.3–12.2.9. Condition: unauthenticated network access via HTTP can compromise Oracle Common Applications, with requir...

8.2CVSS8.3AI score0.01256EPSS
CVE
CVE
added 2016/10/25 2:0 p.m.43 views

CVE-2016-5575

CVE-2016-5575 affects Oracle E-Business Suite, specifically the Common Applications Calendar (CAC) component. Versions 12.1.1–12.1.3 and 12.2.3–12.2.6 are vulnerable. The issue is described as an unspecified vulnerability in the CAC Resources Module that allows remote attackers to affect confiden...

5.3CVSS5.2AI score0.01843EPSS