2 matches found
CVE-2021-2228
CVE-2021-2228 affects Oracle E-Business Suite, Oracle Incentive Compensation UI. Affected versions: 12.1.3 and 12.2.3–12.2.10. The issue allows a low-privileged, network-authenticated attacker (HTTP) to trigger unauthorized create/delete/modify actions on Oracle Incentive Compensation data, poten...
CVE-2021-35585
CVE-2021-35585 is a documented vulnerability in the Oracle Incentive Compensation UI of Oracle E-Business Suite. Affected, supported versions are 12.1.1–12.1.3. The issue is exploitable by a low-privilege, network-accessible attacker over HTTP, leading to unauthorized creation/deletion/modificati...