28 matches found
CVE-2024-21086
CVE-2024-21086 is a vulnerability in Oracle E-Business Suite's Oracle CRM Technical Foundation (Preferences) . Affected versions are 12.2.3–12.2.13 . The issue is exploitable by an unauthenticated attacker over HTTP and requires human interaction, potentially allowing an adversary to perform unau...
CVE-2020-2653
CVE-2020-2653 affects Oracle E-Business Suite’s CRM Technical Foundation (component: Preferences) with vulnerable versions: 12.1.3 and 12.2.3–12.2.9 . An unauthenticated attacker with network access over HTTPS can compromise the foundation; attacks require user interaction and may impact other pr...
CVE-2017-10185
CVE-2017-10185 affects Oracle E-Business Suite with the Oracle CRM Technical Foundation User Management subcomponent. Affected versions are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. The vulnerability allows an unauthenticated attacker, over HTTP, to compromise the Oracle CRM Technical Foundation...
CVE-2017-3420
The CVE-2017-3420 entry concerns Oracle E-Business Suite, Oracle CRM Technical Foundation (User Interface subcomponent). Affected software/version: Oracle E-Business Suite 12.1.3. The vulnerability is exploitable over HTTP with network access and unauthenticated attacker, but successful exploitat...
CVE-2020-14850
The CVE-2020-14850 entry covers an Oracle E-Business Suite vulnerability in the CRM Technical Foundation (Flex Fields). Affected versions are 12.1.3 and 12.2.3–12.2.10. The issue allows an unauthenticated attacker with network access via HTTP to compromise Oracle CRM Technical Foundation, with su...
CVE-2024-20939
CVE-2024-20939 affects Oracle E-Business Suite, specifically the Oracle CRM Technical Foundation Admin Console, with versions 12.2.3–12.2.13 vulnerable. The issue is an input validation/logic flaw that allows a low-privilege, network-accessible attacker via HTTP to cause a partial denial of servi...
CVE-2017-10387
CVE-2017-10387 affects Oracle E-Business Suite, specifically the Oracle CRM Technical Foundation (Preferences) in versions 12.1.3, 12.2.3–12.2.7. The vulnerability allows an unauthenticated attacker with network access over HTTP to compromise data integrity, with successful attacks potentially en...
CVE-2020-14823
CVE-2020-14823 affects Oracle CRM Technical Foundation (Oracle E-Business Suite) component Preferences. Affected versions are 12.2.3–12.2.10. The vulnerability allows a high-privilege attacker with network access via HTTP to compromise data, enabling unauthorized creation, deletion or modificatio...
CVE-2018-2993
CVE-2018-2993 affects Oracle E-Business Suite’s Oracle CRM Technical Foundation (Preferences) and is present in 12.1.1–12.2.7. The flaw allows an unauthenticated attacker with network access via HTTP to compromise data, with UI interaction required and potential unauthorized read/write access; CV...
CVE-2018-3017
CVE-2018-3017 affects the Oracle E-Business Suite, specifically the CRM Technical Foundation component (subcomponent: Preferences). Affected versions: 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, and 12.2.7. The vulnerability allows an unauthenticated attacker with network access via H...
CVE-2020-14774
CVE-2020-14774 affects Oracle E-Business Suite CRM Technical Foundation (component: Preferences). Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability allows an unauthenticated attacker, over HTTP, to cause a hang or a frequent crash (DoS) of Oracle CRM Technical Foundation. ...
CVE-2020-2886
CVE-2020-2886 affects Oracle E-Business Suite, Oracle CRM Technical Foundation (component: Preferences) in versions 12.1.3 and 12.2.3–12.2.9. The vulnerability allows an unauthenticated attacker with network access over HTTP to compromise data, with human interaction required and potential unauth...
CVE-2017-10180
CVE-2017-10180 affects Oracle E-Business Suite CMRO (Oracle CRM Technical Foundation) with affected versions 12.1.3, 12.2.3–12.2.6. The vulnerability is a cross-site scripting (XSS) flaw due to improper validation of user input in CMRO, allowing an unauthenticated, network-accessible attacker to ...
CVE-2017-3419
Oracle E-Business Suite CVE-2017-3419 affects the Oracle CRM Technical Foundation component (User Interface) with the 12.1.3 release. The vulnerability allows an unauthenticated attacker, over HTTP, to access and potentially modify Oracle CRM data after social interaction, as described by the CVS...
CVE-2020-2651
CVE-2020-2651 affects Oracle E-Business Suite's Oracle CRM Technical Foundation (component: Preferences). Concrete affected versions are 12.1.3 and 12.2.3–12.2.9. The vulnerability allows an unauthenticated attacker with network access via HTTPS to compromise Oracle CRM Technical Foundation, with...
CVE-2016-0582
CVE-2016-0582 pertains to an unspecified vulnerability in the Oracle CRM Technology Foundation BIS Common Component of Oracle E-Business Suite 11.5.10.2 . The vulnerability affects integrity and is described as exploitable via vectors related to BIS Common Components, with remote access implied i...
CVE-2016-0584
Technical details for CVE-2016-0584 are not publicly available in the provided documents. Connected sources reference related entries but do not disclose specific impacted products/versions or remediation. Monitor for updates.
CVE-2017-10143
CVE-2017-10143 concerns Oracle E-Business Suite’s Oracle CRM Technical Foundation (Preferences subcomponent). Affected are EBS versions 12.1.3, 12.2.3, 12.2.4, 12.2.5, and 12.2.6. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise the CRM Technical Fou...
CVE-2017-3418
CVE-2017-3418 affects Oracle E-Business Suite, specifically the Oracle CRM Technical Foundation component (User Interface) version 12.1.3. The vulnerability allows an unauthenticated attacker with network access over HTTP to compromise the CRM Technical Foundation; attacks may impact additional p...
CVE-2020-2881
CVE-2020-2881 affects Oracle E-Business Suite, Oracle CRM Technical Foundation (component: Preferences). Affected versions: 12.1.1–12.1.3. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise the CRM Technical Foundation; attacks require user interaction...
CVE-2020-2889
CVE-2020-2889 affects Oracle E-Business Suite, specifically the Oracle CRM Technical Foundation (Preferences) component. Affected versions are 12.1.3 and 12.2.3–12.2.9. The vulnerability allows an unauthenticated, network-accessing attacker (via HTTP) to read a subset of Oracle CRM Technical Foun...
CVE-2020-2652
CVE-2020-2652 affects Oracle E-Business Suite, specifically the Oracle CRM Technical Foundation component (Preferences). Affected versions are 12.1.3 and 12.2.3–12.2.9. The issue enables an unauthenticated attacker with network access via HTTPS to compromise Oracle CRM Technical Foundation, poten...
CVE-2016-0579
Technical details about CVE-2016-0579 are not publicly provided in the supplied documents. The connected sources reference the BIS Common Component in Oracle E-Business Suite but do not specify affected versions, root cause, exploitation details, or fixes. Monitor for updates.
CVE-2020-2657
CVE-2020-2657 affects Oracle E-Business Suite’s Oracle CRM Technical Foundation (component: Preferences). Affects 12.1.3 and 12.2.3–12.2.9. An unauthenticated user with network access via HTTPS can compromise Oracle CRM Technical Foundation. The attack requires user interaction and may impact add...
CVE-2016-0550
CVE-2016-0550 affects Oracle E-Business Suite, specifically the Oracle CRM Technical Foundation CRM HTML Administration component. The vulnerability, described as an unspecified issue, could allow remote attackers to affect confidentiality and integrity via vectors related to CRM HTML Administrat...
CVE-2016-0578
CVE-2016-0578 affects Oracle E-Business Suite 11.5.10.2 via the Oracle CRM Technology Foundation BIS Common Components. The vulnerability is described as unspecified, enabling remote attackers to impact confidentiality and integrity through BIS Common Components-related vectors. Root cause and ex...
CVE-2016-5589
Technical details (affected product specifics, root cause, impact, and fixes) for CVE-2016-5589 are not provided in the connected documents. Monitor for updates from Oracle and CVE databases.
CVE-2016-5596
Technical details about CVE-2016-5596 are not publicly provided in the supplied documents; no affected product/version, vulnerability type, or remediation is specified. Monitor Oracle CPU advisories and vendor updates for disclosure.