2 matches found
CVE-2018-2655
Affected product: Oracle E-Business Suite — Work in Process component (subcomponent Assemble/Configure to Order). Vulnerable versions: 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7. Description from multiple sources confirms an easily exploitable vulnerability allowing an unauthe...
CVE-2019-2633
CVE-2019-2633 : Vulnerability in Oracle E-Business Suite Work in Process (Messages) affecting 12.1.1, 12.1.2, 12.1.3, 12.2.3–12.2.8. A low-privileged, network-accessible attacker (via HTTP) can compromise data in Work in Process; CVSS v3.1 base score 9.9 (CRITICAL) with C/H/I/H and A/L. Root caus...