CVSS: 6.3EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2756
https://notcve.org/view.php?id=CVE-2018-2756
19 Apr 2018 — Vulnerability in the Oracle Communications Order and Service Management component of Oracle Communications Applications (subcomponent: WebUI). Supported versions that are affected are 7.2.4.3.0, 7.3.0.1.x, 7.3.1.0.7 and 7.3.5.0.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Communications Order and Service Management. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerabili... • http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html •
CVSS: 6.1EPSS: 0%CPEs: 11EXPL: 0CVE-2018-2567
https://notcve.org/view.php?id=CVE-2018-2567
18 Jan 2018 — Vulnerability in the Oracle Communications Order and Service Management component of Oracle Communications Applications (subcomponent: Portal). Supported versions that are affected are 7.2.4.1.x, 7.2.4.2.x, 7.3.0.x.x and 7.3.0.1.x. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Communications Order and Service Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Ora... • http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html •