CVSS: 9.1EPSS: 1%CPEs: 2EXPL: 0CVE-2020-14805
https://notcve.org/view.php?id=CVE-2020-14805
21 Oct 2020 — Vulnerability in the Oracle E-Business Suite Secure Enterprise Search product of Oracle E-Business Suite (component: Search Integration Engine). Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle E-Business Suite Secure Enterprise Search. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracl... • https://www.oracle.com/security-alerts/cpuoct2020.html •
CVSS: 8.2EPSS: 1%CPEs: 9EXPL: 0CVE-2019-2551
https://notcve.org/view.php?id=CVE-2019-2551
23 Apr 2019 — Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite (subcomponent: Print Server). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle One-to-One Fulfillment. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle One-to-One Fulf... • http://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html •
CVSS: 4.7EPSS: 0%CPEs: 7EXPL: 0CVE-2019-2396
https://notcve.org/view.php?id=CVE-2019-2396
16 Jan 2019 — Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle CRM Technical Foundation. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle CRM Technical Foundation, attac... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 8.2EPSS: 1%CPEs: 9EXPL: 0CVE-2019-2400
https://notcve.org/view.php?id=CVE-2019-2400
16 Jan 2019 — Vulnerability in the Oracle iStore component of Oracle E-Business Suite (subcomponent: User Registration). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle iStore, attacks may significantly impact a... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 8.2EPSS: 1%CPEs: 9EXPL: 0CVE-2019-2440
https://notcve.org/view.php?id=CVE-2019-2440
16 Jan 2019 — Vulnerability in the Oracle Marketing component of Oracle E-Business Suite (subcomponent: User Interface). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Marketing. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Marketing, attacks may significantly im... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 9.1EPSS: 1%CPEs: 3EXPL: 0CVE-2019-2453
https://notcve.org/view.php?id=CVE-2019-2453
16 Jan 2019 — Vulnerability in the Oracle Performance Management component of Oracle E-Business Suite (subcomponent: Performance Management Plan). Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Performance Management. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Performance Management accessib... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 8.2EPSS: 1%CPEs: 9EXPL: 0CVE-2019-2470
https://notcve.org/view.php?id=CVE-2019-2470
16 Jan 2019 — Vulnerability in the Oracle Partner Management component of Oracle E-Business Suite (subcomponent: Partner Detail). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Partner Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Partner Management, a... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 4.7EPSS: 0%CPEs: 9EXPL: 0CVE-2019-2485
https://notcve.org/view.php?id=CVE-2019-2485
16 Jan 2019 — Vulnerability in the Oracle Mobile Field Service component of Oracle E-Business Suite (subcomponent: Administration). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field Service. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Mobile Field Serv... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 5.3EPSS: 0%CPEs: 7EXPL: 0CVE-2019-2488
https://notcve.org/view.php?id=CVE-2019-2488
16 Jan 2019 — Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Session Management). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle CRM Technical Foundation. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle CRM Technical Foundation accessible data. C... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 9.1EPSS: 1%CPEs: 7EXPL: 0CVE-2019-2489
https://notcve.org/view.php?id=CVE-2019-2489
16 Jan 2019 — Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite (subcomponent: OCM Query). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle One-to-One Fulfillment. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle One-to-One Fulfil... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •