Lucene search
K
OracleWeb Applications Desktop Integrator

9 matches found

cve
cve
added 2024/02/17 1:50 a.m.69 views

CVE-2024-20907

Oracle E-Business Suite CVE-2024-20907 affects Oracle Web Applications Desktop Integrator (component: File download) in versions 12.2.3–12.2.13. The root cause is insufficient input validation in the file download component. The vulnerability allows an unauthenticated attacker, reachable over HTT...

6.1CVSS5.5AI score0.00327EPSS
cve
cve
added 2024/04/16 9:26 p.m.68 views

CVE-2024-21048

CVE-2024-21048 affects Oracle E-Business Suite’s Oracle Web Applications Desktop Integrator (XML input) for versions 12.2.3–12.2.13. The root cause is insufficient input validation in the XML input component, enabling a low-privileged, network-accessible attacker over HTTP to read data from the a...

4.3CVSS5.7AI score0.00417EPSS
cve
cve
added 2023/07/18 8:18 p.m.63 views

CVE-2023-22037

The CVE-2023-22037 vulnerability affects Oracle E-Business Suite’s Oracle Web Applications Desktop Integrator (MS Excel Specific) with affected versions 12.2.3–12.2.12. The issue enables a low-privilege, network-accessible attacker (via HTTP) to compromise the component, requiring user interactio...

6.5CVSS6.5AI score0.00302EPSS
cve
cve
added 2022/10/18 12:0 a.m.59 views

CVE-2022-39428

CVE-2022-39428 affects Oracle Web Applications Desktop Integrator, a component of Oracle E-Business Suite. The vulnerability is in the Upload module and affects supported versions 12.2.3–12.2.11. An unauthenticated attacker with network access over HTTP can compromise the component, potentially l...

9.8CVSS9.3AI score0.36455EPSS
cve
cve
added 2021/07/20 10:44 p.m.55 views

CVE-2021-2434

CVE-2021-2434 affects Oracle E-Business Suite’s Oracle Web Applications Desktop Integrator (component: Application Service). Affected versions are 12.1.3 and 12.2.3–12.2.10. The vulnerability allows a low-privileged, unauthenticated attacker with network access via HTTP to compromise the Oracle W...

8.1CVSS7.8AI score0.00987EPSS
cve
cve
added 2020/01/15 4:34 p.m.52 views

CVE-2020-2591

CVE-2020-2591 affects Oracle Web Applications Desktop Integrator (component: Application Service) in Oracle E-Business Suite, version 12.1.3. The CVSS 3.0 base score is 8.2 (HIGH) with network access required and user interaction, potentially leading to unauthorized read/write of data and broader...

8.2CVSS8.2AI score0.01314EPSS
cve
cve
added 2017/10/19 5:0 p.m.48 views

CVE-2017-10323

CVE-2017-10323 affects Oracle Web Applications Desktop Integrator (WADI) in Oracle E-Business Suite. Affected: 12.x E-Business Suite versions 12.1.1–12.2.6. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise WADI, with exploitation requiring some user ...

8.2CVSS8.1AI score0.01929EPSS
cve
cve
added 2016/07/21 10:0 a.m.41 views

CVE-2016-3523

CVE-2016-3523 is described in the provided documents as an unspecified vulnerability in the Oracle Web Applications Desktop Integrator component of Oracle E-Business Suite affecting versions 12.1.3, 12.2.3, 12.2.4, and 12.2.5. The issue reportedly allows remote attackers to affect integrity via v...

4.7CVSS4.9AI score0.01918EPSS
cve
cve
added 2016/07/21 10:0 a.m.38 views

CVE-2016-3522

CVE-2016-3522 refers to an unspecified vulnerability in the Oracle E-Business Suite Web Applications Desktop Integrator (WADI) component. Affected are E-Business Suite versions 12.1.3, 12.2.3, 12.2.4, and 12.2.5. The flaw is reported under the Application Service subcomponent and allows remote at...

8.5CVSS7.5AI score0.02914EPSS