CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-20943
https://notcve.org/view.php?id=CVE-2024-20943
17 Feb 2024 — Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Knowledge Management, attacks may significantly impact additional products (s... • https://www.oracle.com/security-alerts/cpujan2024.html • CWE-285: Improper Authorization •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-20948
https://notcve.org/view.php?id=CVE-2024-20948
16 Jan 2024 — Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setup, Admin). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Knowledge Management, attacks may significantly impact additional products (scope c... • https://www.oracle.com/security-alerts/cpujan2024.html •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-20940
https://notcve.org/view.php?id=CVE-2024-20940
16 Jan 2024 — Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Create, Update, Authoring Flow). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Knowledge Management, attacks may significantly impact additional... • https://www.oracle.com/security-alerts/cpujan2024.html •
CVSS: 8.2EPSS: 11%CPEs: 2EXPL: 0CVE-2021-2198
https://notcve.org/view.php?id=CVE-2021-2198
22 Apr 2021 — Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setup, Admin). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Knowledge Management, attacks may significantly impact additional... • https://www.oracle.com/security-alerts/cpuapr2021.html •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0CVE-2020-2931
https://notcve.org/view.php?id=CVE-2020-2931
15 Apr 2020 — Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Web Applications - InfoCenter). Supported versions that are affected are 8.6.0-8.6.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful attacks of this vulnerability can result in takeover of Oracle Knowledge. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). • https://www.oracle.com/security-alerts/cpuapr2020.html •
CVSS: 5.9EPSS: 1%CPEs: 1EXPL: 0CVE-2020-2932
https://notcve.org/view.php?id=CVE-2020-2932
15 Apr 2020 — Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Knowledge. CVSS 3.0 Base Score 5.9 (Availability impacts). • https://www.oracle.com/security-alerts/cpuapr2020.html •
CVSS: 8.2EPSS: 1%CPEs: 1EXPL: 0CVE-2020-2841
https://notcve.org/view.php?id=CVE-2020-2841
15 Apr 2020 — Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setup, Admin). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Knowledge Management, attacks may significantly impact additional products. Successf... • https://www.oracle.com/security-alerts/cpuapr2020.html •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2020-2791
https://notcve.org/view.php?id=CVE-2020-2791
15 Apr 2020 — Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). Supported versions that are affected are 8.6.0-8.6.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful attacks of this vulnerability can result in takeover of Oracle Knowledge. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). • https://www.oracle.com/security-alerts/cpuapr2020.html •
CVSS: 6.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-2795
https://notcve.org/view.php?id=CVE-2020-2795
15 Apr 2020 — Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: Information Manager Console). Supported versions that are affected are 8.6.0-8.6.2. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Knowledge executes to compromise Oracle Knowledge. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Oracle Knowledge. • https://www.oracle.com/security-alerts/cpuapr2020.html •
CVSS: 5.9EPSS: 1%CPEs: 1EXPL: 0CVE-2020-2524
https://notcve.org/view.php?id=CVE-2020-2524
15 Apr 2020 — Vulnerability in the Oracle Knowledge product of Oracle Knowledge (component: InQuira Search). Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Knowledge. CVSS 3.0 Base Score 5.9 (Availability impacts). • https://www.oracle.com/security-alerts/cpuapr2020.html •