CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-10162
https://notcve.org/view.php?id=CVE-2017-10162
Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Services). Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Siebel Core - Server Framework accessible data as well as unauthorized read access to a subset of Siebel Core - Server Framework accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). • http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html http://www.securityfocus.com/bid/101416 •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2017-10049
https://notcve.org/view.php?id=CVE-2017-10049
Vulnerability in the Siebel Core CRM component of Oracle Siebel CRM (subcomponent: Search). Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel Core CRM. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Siebel Core CRM, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Siebel Core CRM accessible data as well as unauthorized read access to a subset of Siebel Core CRM accessible data. • http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html http://www.securityfocus.com/bid/99626 http://www.securitytracker.com/id/1038936 •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2016-3450
https://notcve.org/view.php?id=CVE-2016-3450
Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-5460 and CVE-2016-5466. Vulnerabilidad no especificada en el componente Siebel Core - Server Framework en Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015 e IP2016 permite a atacantes remotos afectar la confidencialidad a través de vectores relacionados con Services, una vulnerabilidad diferente a CVE-2016-5460 y CVE-2016-5466. • http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html http://www.securityfocus.com/bid/91787 http://www.securityfocus.com/bid/91920 http://www.securitytracker.com/id/1036400 •
CVSS: 3.3EPSS: 0%CPEs: 5EXPL: 0CVE-2016-3469
https://notcve.org/view.php?id=CVE-2016-3469
Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows local users to affect confidentiality via vectors related to Services. Vulnerabilidad no especificada en el componente Siebel Core - Server Framework en Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015 e IP2016 permite a usuarios locales afectar la confidencialidad a través de vectores relacionados con Services. • http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html http://www.securityfocus.com/bid/91787 http://www.securityfocus.com/bid/91928 http://www.securitytracker.com/id/1036400 •
CVSS: 4.0EPSS: 0%CPEs: 5EXPL: 0CVE-2016-5462
https://notcve.org/view.php?id=CVE-2016-5462
Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote administrators to affect confidentiality via vectors related to Workspaces. Vulnerabilidad no especificada en el componente Siebel Core - Server Framework en Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015 e IP2016 permite a administradores remotos afectar la confidencialidad a través de vectores Workspaces. • http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html http://www.securityfocus.com/bid/91787 http://www.securityfocus.com/bid/91968 http://www.securitytracker.com/id/1036400 •