CVSS: 9.8EPSS: 7%CPEs: 1EXPL: 0CVE-2007-5527
https://notcve.org/view.php?id=CVE-2007-5527
17 Oct 2007 — Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10.2 have unknown impact and remote attack vectors, related to (1) Application Object Library component (APP01), (2) Contracts Integration (APP02), (3) Applications Manager (APP04), (4) Marketing component (APP05), and (5) Exchange component (APP07). Múltiples vulnerabilidades no especificadas en Oracle E-Business Suite 11.5.10.2 tienen un impacto desconocido y vectores de ataque remotos, relacionados con el componente(1) Application Objec... • http://marc.info/?l=bugtraq&m=119332677525918&w=2 •
CVSS: 9.8EPSS: 5%CPEs: 1EXPL: 0CVE-2007-5529
https://notcve.org/view.php?id=CVE-2007-5529
17 Oct 2007 — Unspecified vulnerability in the Oracle Self-Service Web Applications component in client-only installations of Oracle E-Business Suite 11.5.10.2 has unknown impact and remote attack vectors, aka APP08. Vulnerabilidad no especificada en el componente Oracle Self-Service Web Applications en instalaciones solo de cliente de Oracle E-Business Suite 11.5.10.2, tiene impacto desconocido y vectores de ataque remotos, también conocido como APP08. • http://marc.info/?l=bugtraq&m=119332677525918&w=2 •
CVSS: 8.8EPSS: 1%CPEs: 38EXPL: 0CVE-2007-3854
https://notcve.org/view.php?id=CVE-2007-3854
18 Jul 2007 — Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.5 allow remote authenticated users to have unknown impact via (1) SYS.DBMS_PRVTAQIS in the Advanced Queuing component (DB02) and (2) MDSYS.MD in the Spatial component (DB12). NOTE: Oracle has not disputed reliable researcher claims that DB02 is for SQL injection and DB12 is for a buffer overflow. Múltiples vulnerabilidades no especificadas en Oracle Database versiones 9.0.1.5+, 9.2.0.7 y 10.1.0.5, permiten a usuarios auten... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00727143 •
CVSS: 9.1EPSS: 62%CPEs: 2EXPL: 0CVE-2007-3866
https://notcve.org/view.php?id=CVE-2007-3866
18 Jul 2007 — Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 and 12.0.1 allow remote attackers to have an unknown impact via (a) Oracle Configurator (APPS02), (b) Oracle iExpenses (APPS03), (c) Oracle Application Object Library (APPS09), and (1) APPS12, (2) APPS13, and (3) APPS14 in (d) Oracle Payables. Múltiples vulnerabilidades sin especificar en el Oracle E-Business Suite 11.5.10CU2 y 12.0.1 permiten a atacantes remotos tener un impacto desconocido a través de (a) el Oracle Configurator (AP... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00727143 •
CVSS: 9.8EPSS: 5%CPEs: 1EXPL: 0CVE-2007-3867
https://notcve.org/view.php?id=CVE-2007-3867
18 Jul 2007 — Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and attack vectors, related to (1) APPS04, (2) APPS05, and (3) APPS06 in (a) Oracle Application Object Library, (4) APPS07 in Oracle Customer Intelligence, (5) APPS08 in Oracle Payments, (7) APPS10 in Oracle Human Resources, and (8) APPS11 in iRecruitment. Múltiples vulnerabilidades no especificadas en Oracle E-Business Suite 11.5.10CU2 tienen un impacto desconocido y vectores de ataque, referidos a (1) APPS04, (2... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00727143 •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2007-2126
https://notcve.org/view.php?id=CVE-2007-2126
18 Apr 2007 — Unspecified vulnerability in Oracle E-Business Suite 11.5.10CU2 has unknown impact and remote attack vectors in the (1) Common Applications (APPS01) and (2) iProcurement (APPS02). Vulnerabilidad no especificada en Oracle E-Business Suite 11.5.10CU2 tiene un impacto desconocido y vectores de ataque remotos en (1) Common Applications (APPS01) y (2) iProcurement (APPS02). • http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_April_2007_Analysis.pdf •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-0290
https://notcve.org/view.php?id=CVE-2007-0290
17 Jan 2007 — Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10CU2 have unknown impact and attack vectors related to (1) Application Object Library (APPS01), (2) Human Resources (APPS03), (3) Payables (APPS04), (4) Trading Community Architecture (APPS05), and (5) Web Applications Desktop Integrator (APPS06). Múltiples vulnerabilidades no especificadas en Oracle E-Business Suite and Applications 11.5.10CU2 tienen impacto y vectores de ataque desconocidos relacionados con 1) Applicati... • http://osvdb.org/32888 •
CVSS: 5.4EPSS: 0%CPEs: 8EXPL: 0CVE-2007-0275
https://notcve.org/view.php?id=CVE-2007-0275
17 Jan 2007 — Cross-site scripting (XSS) vulnerability in Oracle Reports Web Cartridge (RWCGI60) in the Workflow Cartridge component, as used in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.3; Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2; Collaboration Suite 10.1.2; and Oracle E-Business Suite and Applications 11.5.10CU2; allows remote authenticated users to inject arbitrary HTML or web script via the genuser parameter to rwcgi60, aka OWF01. Vulnerabilidad de tipo cross-site-scripting (XSS) en Oracle Reports Web... • http://osvdb.org/32906 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 5%CPEs: 2EXPL: 0CVE-2007-0279
https://notcve.org/view.php?id=CVE-2007-0279
17 Jan 2007 — Multiple unspecified vulnerabilities in Oracle HTTP Server 9.2.0.8 and Oracle E-Business Suite and Applications 11.5.10CU2 have unknown impact and attack vectors, aka (1) OHS01, (2) OHS02, (3) OHS05, (4) OHS06, and (5) OHS07. Múltiples vulnerabilidades no especificadas en Oracle HTTP Server 9.2.0.8 y Oracle E-Business Suite and Applications 11.5.10CU2 tienen impacto y vectores de ataque desconocidos, también conocidos como (1) OHS01, (2) OHS02, (3) OHS05, (4) OHS06, y (5) OHS07. • http://osvdb.org/32881 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2006-5350
https://notcve.org/view.php?id=CVE-2006-5350
18 Oct 2006 — Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown impact and local attack vectors, aka Vuln# OHS08. Vulnerabilidad no especificada en Oracle HTTP Server 9.2.0.7 y Oracle E-Business Suite y Applications 11.5.10CU2 tiene impacto y vectores de ataque locales desconocidos, también conocido como Vuln# OHS08. • http://secunia.com/advisories/22396 •