CVSS: 9.1EPSS: 1%CPEs: 2EXPL: 0CVE-2020-14805
https://notcve.org/view.php?id=CVE-2020-14805
21 Oct 2020 — Vulnerability in the Oracle E-Business Suite Secure Enterprise Search product of Oracle E-Business Suite (component: Search Integration Engine). Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle E-Business Suite Secure Enterprise Search. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracl... • https://www.oracle.com/security-alerts/cpuoct2020.html •
CVSS: 8.2EPSS: 1%CPEs: 9EXPL: 0CVE-2019-2551
https://notcve.org/view.php?id=CVE-2019-2551
23 Apr 2019 — Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite (subcomponent: Print Server). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle One-to-One Fulfillment. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle One-to-One Fulf... • http://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html •
CVSS: 4.7EPSS: 0%CPEs: 9EXPL: 0CVE-2019-2492
https://notcve.org/view.php?id=CVE-2019-2492
16 Jan 2019 — Vulnerability in the Oracle Email Center component of Oracle E-Business Suite (subcomponent: Message Display). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Email Center. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Email Center, attacks may signif... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 9.1EPSS: 1%CPEs: 3EXPL: 0CVE-2019-2453
https://notcve.org/view.php?id=CVE-2019-2453
16 Jan 2019 — Vulnerability in the Oracle Performance Management component of Oracle E-Business Suite (subcomponent: Performance Management Plan). Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Performance Management. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Performance Management accessib... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 8.2EPSS: 1%CPEs: 9EXPL: 0CVE-2019-2470
https://notcve.org/view.php?id=CVE-2019-2470
16 Jan 2019 — Vulnerability in the Oracle Partner Management component of Oracle E-Business Suite (subcomponent: Partner Detail). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Partner Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Partner Management, a... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 5.3EPSS: 0%CPEs: 7EXPL: 0CVE-2019-2488
https://notcve.org/view.php?id=CVE-2019-2488
16 Jan 2019 — Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Session Management). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle CRM Technical Foundation. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle CRM Technical Foundation accessible data. C... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 8.2EPSS: 1%CPEs: 9EXPL: 0CVE-2019-2400
https://notcve.org/view.php?id=CVE-2019-2400
16 Jan 2019 — Vulnerability in the Oracle iStore component of Oracle E-Business Suite (subcomponent: User Registration). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle iStore, attacks may significantly impact a... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 8.2EPSS: 1%CPEs: 7EXPL: 0CVE-2019-2497
https://notcve.org/view.php?id=CVE-2019-2497
16 Jan 2019 — Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle CRM Technical Foundation. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle CRM Technical Foundation, attac... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 4.7EPSS: 0%CPEs: 9EXPL: 0CVE-2019-2491
https://notcve.org/view.php?id=CVE-2019-2491
16 Jan 2019 — Vulnerability in the Oracle Email Center component of Oracle E-Business Suite (subcomponent: Message Display). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Email Center. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Email Center, attacks may signif... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •
CVSS: 4.7EPSS: 0%CPEs: 7EXPL: 0CVE-2019-2496
https://notcve.org/view.php?id=CVE-2019-2496
16 Jan 2019 — Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle CRM Technical Foundation. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle CRM Technical Foundation, attac... • http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html •