26 matches found
CVE-2019-2829
The CVE-2019-2829 issue affects Oracle E-Business Suite iSupport (Service Requests) versions 12.1.1–12.1.3 and 12.2.3–12.2.8. The underlying flaw allows an unauthenticated attacker with network access via HTTP to compromise iSupport; human interaction is required for exploitation, and attacks may...
CVE-2017-3369
CVE-2017-3369 affects Oracle E-Business Suite, Oracle iSupport UI subcomponent. Vulnerable versions: 12.1.1, 12.1.2, 12.1.3. An unauthenticated attacker with network access over HTTP can exploit this vulnerability, with human interaction required, to gain unauthorized access to Oracle iSupport da...
CVE-2017-10415
Vulnerability CVE-2017-10415 affects Oracle E-Business Suite iSupport (subcomponent Others). Affected versions: 12.1.1–12.2.7. An unauthenticated, network-accessible over HTTP attacker can compromise iSupport, with human interaction required. Consequences include unauthorized access to critical d...
CVE-2020-2872
CVE-2020-2872 affects Oracle E-Business Suite iSupport, Profile component, in versions 12.1.1–12.1.3. Affected installations permit an unauthenticated attacker with network access via HTTP to compromise iSupport; exploitation is described as easily exploitable and requires user interaction. Succe...
CVE-2021-2097
CVE-2021-2097 (Oracle iSupport, Oracle E-Business Suite) affects the Profile component in versions 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle iSupport; successful attacks require human interaction. Impac...
CVE-2020-2658
CVE-2020-2658 concerns Oracle E-Business Suite’s Oracle iSupport component. Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.9. The vulnerability allows an unauthenticated attacker with network access over HTTPS to compromise iSupport, with exploitation requiring human interaction from a user ...
CVE-2020-2667
CVE-2020-2667 affects Oracle E-Business Suite’s Oracle iSupport (component: Others) in versions 12.1.1–12.1.3 and 12.2.3–12.2.9. The vulnerability allows an unauthenticated attacker with network access over HTTPS to exploit via human interaction, potentially leading to unauthorized update/insert/...
CVE-2017-10174
CVE-2017-10174 concerns a vulnerability in the Oracle iSupport component of Oracle E-Business Suite (Service Request subcomponent). Affected versions include 12.1.1, 12.1.2, 12.1.3, 12.2.3–12.2.6. The issue allows an unauthenticated attacker with network access via HTTP to compromise iSupport, wi...
CVE-2020-2878
CVE-2020-2878 affects Oracle E-Business Suite iSupport (Mail component), with affected versions 12.1.1–12.1.3. The connected Red Hat/Oracle/NVD and vuln enrichment entries confirm an unauthenticated, network-accessible vulnerability via HTTP in Oracle iSupport that can lead to unauthorized access...
CVE-2021-2083
CVE-2021-2083 affects Oracle E-Business Suite iSupport (component: User Responsibilities). Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability allows unauthenticated, network-accessible attacks over HTTP that require a user interaction (UI:R), potentially leading to unauthor...
CVE-2020-2665
CVE-2020-2665 describes an Oracle E-Business Suite iSupport vulnerability (component: Others) affecting 12.1.1–12.1.3 and 12.2.3–12.2.9. An unauthenticated attacker with HTTPS network access can compromise iSupport, with human interaction required. Impact includes unauthorized access to data and ...
CVE-2017-10175
Affected product: Oracle E-Business Suite (iSupport component, Profiles subcomponent). Vulnerable versions: 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6. Issue: a vulnerability in the Profiles subcomponent could allow a low-privileged, network-accessing attacker over HTTP to read a subs...
CVE-2020-2668
CVE-2020-2668 affects Oracle iSupport (Oracle E-Business Suite) with affected versions 12.1.1–12.1.3 and 12.2.3–12.2.9. The issue allows an unauthenticated attacker with network access over HTTPS to compromise iSupport, with human interaction required. Vulnerability results in potential unauthori...
CVE-2017-3370
CVE-2017-3370 affects Oracle E-Business Suite's iSupport User Interface (versions 12.1.1–12.1.3). The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise iSupport, with human interaction required for exploitation and potential unauthorized access/update/del...
CVE-2020-2843
CVE-2020-2843 affects Oracle E-Business Suite iSupport, Profile component, in versions 12.1.1–12.1.3. The vulnerability enables an unauthenticated, remote attacker to access/modify data via HTTP; attacks require user interaction and may impact other Oracle products. CVSS v3.1 base score 8.2 (HIGH...
CVE-2020-14686
CVE-2020-14686 affects Oracle iSupport in Oracle E-Business Suite. Affected: Oracle EBS iSupport components across versions 12.1.1–12.1.3 and 12.2.3–12.2.9. Root cause and impact per sources: an unauthenticated, network-accessible vulnerability over HTTP can lead to unauthorized data access and p...
CVE-2017-3371
CVE-2017-3371 affects Oracle E-Business Suite’s iSupport (User Interface) with affected versions 12.1.1, 12.1.2, and 12.1.3. The vulnerability is described as unauthenticated but requires network access via HTTP and some user interaction, enabling potential unauthorized access to sensitive data a...
CVE-2020-2661
CVE-2020-2661 affects Oracle E-Business Suite, specifically the Oracle iSupport component. Vulnerable are the supported versions 12.1.1–12.1.3 and 12.2.3–12.2.9. An unauthenticated attacker with network access via HTTPS can compromise iSupport, with attacks requiring human interaction. The vulner...
CVE-2020-2662
CVE-2020-2662 affects Oracle E-Business Suite, specifically the Oracle iSupport component. Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.9. The issue is exploitable by an unauthenticated attacker over HTTPS with network access, and exploitation requires human interaction by another user. Th...
CVE-2020-2815
CVE-2020-2815 is a vulnerability in Oracle E-Business Suite’s iSupport Profile component. Affected versions are 12.1.1–12.1.3. The issue allows an unauthenticated attacker, with network access via HTTP, to compromise Oracle iSupport; successful attacks may grant unauthorized access to critical da...
CVE-2020-2789
The CVE-2020-2789 entry concerns Oracle iSupport (a UI component of Oracle E-Business Suite). Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.8. The vulnerability enables an unauthenticated attacker with network access over HTTP to compromise Oracle iSupport, with successful attacks requiring...
CVE-2024-20944
CVE-2024-20944 affects Oracle E-Business Suite, specifically the Oracle iSupport component within the Internal Operations area. Affected are versions 12.2.3–12.2.13 . The vulnerability is exploitable over the network via HTTP by a user with low privileges, and requires user interaction. Successfu...
CVE-2020-2855
CVE-2020-2855 affects Oracle iSupport (Admin) within Oracle E-Business Suite versions 12.1.1–12.1.3. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise iSupport, with exploitation requiring user interaction (UI:REQUIRED) and potential impact beyond iSu...
CVE-2026-46945
Technical details about CVE-2026-46945 are not publicly available in the provided documents; monitor for updates.
CVE-2026-46944
Technical details (affected product, vulnerable component, impact, remediation) are not publicly available in the provided documents. Monitor for updates from Oracle and CVE feeds.
CVE-2026-46946
Technical details are not publicly available in the provided documents for CVE-2026-46946; monitor for updates.