16 matches found
CVE-2017-10113
CVE-2017-10113 affects Oracle E-Business Suite, Oracle Common Applications CRM User Management Framework (CRM UMF) with affected versions 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6. The vulnerability is exploitable over HTTP by an unauthenticated attacker and requires user interaction for exploitatio...
CVE-2025-30716
CVE-2025-30716 affects Oracle E-Business Suite, specifically the CRM User Management Framework in the Common Applications component. Affected versions are 12.2.3–12.2.14; the vulnerability is exploitable by an unauthenticated attacker over HTTP, potentially giving unauthorized access to sensitive...
CVE-2021-2093
CVE-2021-2093 affects Oracle E-Business Suite, specifically the Oracle Common Applications component (CRM User Management Framework). Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability enables unauthenticated access via HTTP from a network contact; exploitation requires use...
CVE-2021-2436
CVE-2021-2436 affects Oracle E-Business Suite, specifically the CRM User Management Framework within Oracle Common Applications. Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability enables unauthenticated attackers with network access via HTTP to compromise Oracle Common App...
CVE-2024-20947
CVE-2024-20947 affects Oracle E-Business Suite, Oracle Common Applications (CRM User Management Framework) and impacts version 12.2.3–12.2.13. The vulnerability allows a low-privilege, network-access attacker (HTTP) to compromise Oracle Common Applications with user interaction required. Conseque...
CVE-2017-3328
CVE-2017-3328 affects Oracle E-Business Suite's Oracle Common Applications (Resources Module). Affected versions are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, and 12.2.6. The flaw allows an unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications; howev...
CVE-2017-10330
CVE-2017-10330 affects Oracle E-Business Suite (Oracle Common Applications, Gantt Server) with affected versions 12.1.3, 12.2.3–12.2.7. The vulnerability enables unauthenticated remote attackers to compromise data through HTTP access, with impact to confidentiality and integrity (C/H) and no avai...
CVE-2020-14717
CVE-2020-14717 affects Oracle E-Business Suite, specifically the Common Applications CRM User Management Framework . Affected versions are 12.1.3 and 12.2.3–12.2.9 . The vulnerability allows an unauthenticated attacker with network access over HTTP to compromise Oracle Common Applications. Althou...
CVE-2019-2665
The CVE-2019-2665 entry describes a vulnerability in the Oracle E-Business Suite Common Applications component (CRM User Management Framework). Affected versions include 12.1.3 and 12.2.3–12.2.8. The flaw allows an unauthenticated attacker with network access over HTTP to potentially compromise O...
CVE-2017-3443
CVE-2017-3443 affects Oracle E-Business Suite, Oracle Common Applications (User Interface). Affected versions: 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6. The vulnerability enables network-accessible, unauthenticated access via HTTP, with human interaction required for exploitation; i...
CVE-2020-14716
CVE-2020-14716 affects Oracle E-Business Suite, specifically the Common Applications component (CRM User Management Framework). Affected versions are 12.1.3 and 12.2.3–12.2.9 . The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Common Applicatio...
CVE-2016-0562
CVE-2016-0562 pertains to Oracle E-Business Suite (Oracle Common Applications CRM User Management Framework) and affects versions 11.5.10.2, 12.1.1, 12.1.2, and 12.1.3. The vulnerability is described as unspecified, allowing remote authenticated users to affect integrity via the CRM User Manageme...
CVE-2017-3326
CVE-2017-3326 affects Oracle E-Business Suite, Oracle Common Applications component (Role Summary) across versions 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications, wi...
CVE-2017-3327
CVE-2017-3327 affects Oracle E-Business Suite (Oracle Common Applications, Resources Module). Affected versions are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, and 12.2.6. The vulnerability resides in Oracle Common Applications and is exploitable via HTTP by an unauthenticated attacker over t...
CVE-2020-14688
The CVE covers a vulnerability in Oracle E-Business Suite’s Common Applications component (CRM User Management Framework). Affected: Oracle E-Business Suite versions 12.1.3 and 12.2.3–12.2.9. Condition: unauthenticated network access via HTTP can compromise Oracle Common Applications, with requir...
CVE-2016-5575
CVE-2016-5575 affects Oracle E-Business Suite, specifically the Common Applications Calendar (CAC) component. Versions 12.1.1–12.1.3 and 12.2.3–12.2.6 are vulnerable. The issue is described as an unspecified vulnerability in the CAC Resources Module that allows remote attackers to affect confiden...