E-business Suite Security Vulnerabilities and Issues — Page 2 of E-business Suite CVE List

Lucene search

OracleE-business Suite

330 matches found

CVE•added 2008/07/15 11:41 p.m.•53 views

CVE-2008-2586

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.0.4 has unknown impact and remote authenticated attack vectors, a different vulnerability than CVE-2008-2606.

4CVSS5.8AI score0.00872EPSS

CVE•added 2009/07/14 11:30 p.m.•53 views

CVE-2009-1980

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6CVSS5.6AI score0.00864EPSS

CVE•added 2006/01/18 11:3 a.m.•52 views

CVE-2006-0289

Multiple unspecified vulnerabilities in Oracle Application Server 6.0.8.26(PS17) and E-Business Suite and Applications 11.5.10 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) REP05 and (2) REP06 in the Oracle Reports Developer component. NOTE: Oracle has not disputed r...

10CVSS9.5AI score0.03626EPSS

CVE•added 2006/10/18 1:7 a.m.•52 views

CVE-2006-5359

Multiple unspecified vulnerabilities in Oracle Reports Developer component in Oracle Application Server 9.0.4.3 and 10.1.2.0.2, and Oracle E-Business Suite and Applications 11.5.10CU2, have unknown impact and remote attack vectors, aka Vuln# (1) REP01 and (2) REP02. NOTE: as of 20061027, Oracle has...

10CVSS9.3AI score0.02462EPSS

CVE•added 2007/01/17 2:28 a.m.•52 views

CVE-2007-0285

Unspecified vulnerability in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2; Collaboration Suite 9.0.4.2 and 10.1.2; and E-Business Suite and Applications 11.5.10CU2 has unknown impact and attack vectors related to Oracle Reports Developer, aka REP01.

5CVSS8.7AI score0.00649EPSS

CVE•added 2015/07/16 10:59 a.m.•52 views

CVE-2015-2615

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.0.6, 12.1.3, and 12.2.3 allows remote attackers to affect confidentiality via unknown vectors related to Portal.

5CVSS5.7AI score0.00321EPSS

CVE•added 2018/04/19 2:29 a.m.•52 views

CVE-2018-2874

Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite (subcomponent: Logging). The supported version that is affected is 12.1.3. Easily exploitable vulnerability allows physical access to compromise Oracle Application Object Library. Successful attacks require ...

4.3CVSS4AI score0.00139EPSS

CVE•added 2024/04/16 10:15 p.m.•52 views

CVE-2024-21088

Vulnerability in the Oracle Production Scheduling product of Oracle E-Business Suite (component: Import Utility). Supported versions that are affected are 12.2.4-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Production Sc...

7.5CVSS7.5AI score0.00159EPSS

CVE•added 2016/01/21 3:1 a.m.•51 views

CVE-2016-0521

Unspecified vulnerability in the Oracle iProcurement component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to Redirection.

4.3CVSS5.1AI score0.00311EPSS

CVE•added 2023/07/18 9:15 p.m.•51 views

CVE-2023-22035

Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component: iSurvey Module). Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Scripting. Successful att...

6.1CVSS5.8AI score0.00362EPSS

CVE•added 2024/10/15 8:15 p.m.•51 views

CVE-2024-21279

Vulnerability in the Oracle Sourcing product of Oracle E-Business Suite (component: Auctions). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Sourcing. Successful attacks of t...

8.1CVSS7.8AI score0.00235EPSS

CVE•added 2007/04/18 6:19 p.m.•50 views

CVE-2007-2127

Multiple unspecified vulnerabilities in Oracle E-Business Suite 12.0.0 have unknown impact and remote attack vectors via (1) Application Object Library (APPS04), iStore (2) APPS05 and (3) APPS06, (4) iSupport (APPS07), (5) Trade Management (APPS09), (6) Applications Manager (APPS10), and (7) Oracle...

10CVSS6.3AI score0.01124EPSS

CVE•added 2013/01/17 1:55 a.m.•50 views

CVE-2013-0390

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote authenticated users to affect integrity via unknown vectors related to Bookmarkable Pages.

2.1CVSS5.4AI score0.0015EPSS

CVE•added 2016/01/21 2:59 a.m.•50 views

CVE-2015-4926

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.1, and 12.2 allows remote attackers to affect integrity via vectors related to UIX.

2.6CVSS5.1AI score0.00311EPSS

CVE•added 2019/01/16 7:30 p.m.•50 views

CVE-2019-2396

Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

4.7CVSS4.7AI score0.0083EPSS

CVE•added 2006/01/18 11:3 a.m.•49 views

CVE-2006-0278

Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.9 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) APPS02 in the (a) CRM Technical Foundation component; (2) APPS03 in the (b) iProcurement component; and (3) APPS04, (4) APPS05, and (...

10CVSS6.8AI score0.01809EPSS

CVE•added 2006/01/18 11:3 a.m.•49 views

CVE-2006-0284

Multiple unspecified vulnerabilities in Oracle Application Server 9.0.4.2 and 10.1.2.0.2, and E-Business Suite and Applications 11.5.10, have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) FORM01 and (2) FORM02 in the Oracle Forms component.

10CVSS9.4AI score0.01989EPSS

CVE•added 2009/07/14 11:30 p.m.•49 views

CVE-2009-1982

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2 and 12.0.6 allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6.1AI score0.00524EPSS

CVE•added 2010/01/13 1:30 a.m.•49 views

CVE-2009-3416

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.1 allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6.1AI score0.0042EPSS

CVE•added 2015/01/21 6:59 p.m.•49 views

CVE-2015-0393

Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to DB Privileges. NOTE: the previo...

6CVSS6.5AI score0.01753EPSS

CVE•added 2015/01/21 7:59 p.m.•49 views

CVE-2015-0415

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3 allows remote authenticated users to affect integrity via unknown vectors related to Session Management.

4CVSS5.3AI score0.00431EPSS

CVE•added 2015/10/21 9:59 p.m.•49 views

CVE-2015-4762

Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 12.2.3 and 12.2.4 allows remote authenticated users to affect confidentiality via unknown vectors related to Online patching.

4CVSS5.2AI score0.00169EPSS

CVE•added 2015/10/21 11:59 p.m.•49 views

CVE-2015-4849

Unspecified vulnerability in the Oracle Payments component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Punch-in. NOTE: the previous information is from the Octo...

6.8CVSS6AI score0.01418EPSS

CVE•added 2006/10/18 1:7 a.m.•48 views

CVE-2006-5350

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown impact and local attack vectors, aka Vuln# OHS08.

7.2CVSS6AI score0.00462EPSS

CVE•added 2007/07/18 7:30 p.m.•48 views

CVE-2007-3865

Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 12.0.1 has unknown impact and remote attack vectors, aka APPS01.

7.5CVSS6.2AI score0.015EPSS

CVE•added 2007/10/17 11:17 p.m.•48 views

CVE-2007-5528

Multiple unspecified vulnerabilities in Oracle E-Business Suite 12.0.2 have unknown impact and attack vectors related to (1) Public Sector Human Resources (APP03) and (2) Quoting component (APP06).

10CVSS6.2AI score0.01124EPSS

CVE•added 2014/07/17 11:17 a.m.•48 views

CVE-2014-4248

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, and 12.2.3 allows local users to affect confidentiality via unknown vectors related to Logging.

1CVSS5.3AI score0.00081EPSS

CVE•added 2015/07/16 11:0 a.m.•48 views

CVE-2015-2645

Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect integrity via unknown vectors.

3.5CVSS5.6AI score0.00139EPSS

CVE•added 2015/07/16 11:0 a.m.•48 views

CVE-2015-4739

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2 allows remote authenticated users to affect integrity via unknown vectors related to Help screens.

3.5CVSS5.3AI score0.0015EPSS

CVE•added 2015/10/21 11:59 p.m.•48 views

CVE-2015-4884

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality via unknown vectors related to Single Signon.

5CVSS5.7AI score0.00321EPSS

CVE•added 2016/01/21 3:1 a.m.•48 views

CVE-2016-0515

Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via vectors related to BIS Common Components, a different vulnerability than CVE-2016-0514.

6.4CVSS5AI score0.00311EPSS

CVE•added 2016/01/21 3:2 a.m.•48 views

CVE-2016-0575

Unspecified vulnerability in the Oracle Learning Management component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via vectors related to OTA Self Service.

4.3CVSS5.1AI score0.00311EPSS

CVE•added 2019/01/16 7:30 p.m.•48 views

CVE-2019-2453

Vulnerability in the Oracle Performance Management component of Oracle E-Business Suite (subcomponent: Performance Management Plan). Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to c...

9.1CVSS8.2AI score0.0158EPSS

CVE•added 2019/01/16 7:30 p.m.•48 views

CVE-2019-2485

Vulnerability in the Oracle Mobile Field Service component of Oracle E-Business Suite (subcomponent: Administration). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker ...

4.7CVSS4.7AI score0.0083EPSS

CVE•added 2019/01/16 7:30 p.m.•48 views

CVE-2019-2546

Vulnerability in the Oracle Applications Manager component of Oracle E-Business Suite (subcomponent: SQL Extensions). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker ...

4.3CVSS4.8AI score0.0083EPSS

CVE•added 2024/10/15 8:15 p.m.•48 views

CVE-2024-21282

Vulnerability in the Oracle Financials product of Oracle E-Business Suite (component: Common Components). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Financials. Successful...

8.1CVSS7.8AI score0.00235EPSS

CVE•added 2006/10/18 1:7 a.m.•47 views

CVE-2006-5354

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and 10.1.0.5, Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.1.0, and 10.1.3.0, racle Collaboration Suite 9.0.4.2 and 10.1.2, and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown impact and remote attack vectors, aka Vuln# OHS06...

10CVSS9AI score0.00958EPSS

CVE•added 2007/11/08 8:46 p.m.•47 views

CVE-2007-5766

SQL injection vulnerability in okxLOV.jsp in Oracle E-Business Suite 11 and 12 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NOTE: this is probably the same issue as CVE-2007-5527 or CVE-2007-5528, but there are insufficient details to be sure.

7.5CVSS7.7AI score0.01124EPSS

CVE•added 2010/04/13 10:30 p.m.•47 views

CVE-2010-0868

Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect confidentiality and integrity via unknown vectors.

5.8CVSS6AI score0.00882EPSS

CVE•added 2013/04/17 12:19 p.m.•47 views

CVE-2013-1524

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.0.6 and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Attachments.

4.3CVSS5.9AI score0.00311EPSS

CVE•added 2014/10/15 3:55 p.m.•47 views

CVE-2014-6471

Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to OAM Diagnostics.

4.3CVSS5.8AI score0.00397EPSS

CVE•added 2018/04/19 2:29 a.m.•47 views

CVE-2018-2804

Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite (subcomponent: DB Privileges). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Difficult to exploit vulnerability allows unauthenticated attacker with network acce...

7.4CVSS7.3AI score0.01715EPSS

CVE•added 2024/10/15 8:15 p.m.•47 views

CVE-2024-21268

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: Diagnostics). Supported versions that are affected are 12.2.11-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications Mana...

8.1CVSS7.8AI score0.00269EPSS

CVE•added 2024/10/15 8:15 p.m.•47 views

CVE-2024-21269

Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component: Compensation Plan). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Incentive ...

8.1CVSS7.8AI score0.00269EPSS

CVE•added 2006/10/18 1:7 a.m.•46 views

CVE-2006-5348

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7, Oracle Collaboration Suite 9.0.4.2, and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown impact and remote attack vectors related to HTTPS and SSL, aka Vuln# OHS05.

10CVSS6AI score0.00958EPSS

CVE•added 2009/09/14 2:30 p.m.•46 views

CVE-2008-7235

Unspecified vulnerability in the Oracle Forms component in Oracle Application Server 10.1.2.2 and E-Business Suite 12.0.3 allows remote attackers to affect integrity via unknown vectors, aka AS04.

4.3CVSS6.2AI score0.09275EPSS

CVE•added 2009/07/14 11:30 p.m.•46 views

CVE-2009-1983

Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1 allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6.1AI score0.00524EPSS

CVE•added 2010/01/13 1:30 a.m.•46 views

CVE-2010-0075

Unspecified vulnerability in the Oracle HRMS (Self Service) component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.1 allows remote attackers to affect confidentiality via unknown vectors.

5CVSS6AI score0.00433EPSS

CVE•added 2014/07/17 11:17 a.m.•46 views

CVE-2014-4235

Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, and 12.2.3 allows remote authenticated users to affect integrity via unknown vectors.

3.5CVSS5.6AI score0.00441EPSS

CVE•added 2014/10/15 3:55 p.m.•46 views

CVE-2014-6472

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to LOV, a different vulnerability than CVE-2014-6539.

5CVSS5.8AI score0.00363EPSS

Total number of security vulnerabilities330