// For flags

CVE-2011-0836

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - '/jde/E1Menu.maf?jdeowpBackButtonProtect' Cross-Site Scripting

Severity Score

3.5
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

5
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC.

Vulnerabilidad sin especificar en Oracle JD Edwards EnterpriseOne Tools 8.9 GA hasta la 8.98.4.1 y OneWorld Tools hasta la 24.1.3 permite a usuarios autenticados remotos vulnerar la integridad, relacionado con "Web Runtime SEC".

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
Single
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2011-02-04 CVE Reserved
  • 2011-04-19 First Exploit
  • 2011-04-20 CVE Published
  • 2024-09-16 CVE Updated
  • 2024-09-17 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Oracle
Search vendor "Oracle"
Enterpriseone Tools
Search vendor "Oracle" for product "Enterpriseone Tools"
8.9
Search vendor "Oracle" for product "Enterpriseone Tools" and version "8.9"
-
Affected
Oracle
Search vendor "Oracle"
Jd Edwards Enterpriseone
Search vendor "Oracle" for product "Jd Edwards Enterpriseone"
8.9
Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9"
budle14
Affected
Oracle
Search vendor "Oracle"
Jd Edwards Enterpriseone
Search vendor "Oracle" for product "Jd Edwards Enterpriseone"
8.9
Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9"
bundle14
Affected
Oracle
Search vendor "Oracle"
Jd Edwards Enterpriseone
Search vendor "Oracle" for product "Jd Edwards Enterpriseone"
8.9
Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9"
bundle21
Affected
Oracle
Search vendor "Oracle"
Jd Edwards Enterpriseone
Search vendor "Oracle" for product "Jd Edwards Enterpriseone"
8.9
Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9"
bundle9
Affected
Oracle
Search vendor "Oracle"
Jd Edwards Enterpriseone
Search vendor "Oracle" for product "Jd Edwards Enterpriseone"
8.9.18
Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9.18"
-
Affected
Oracle
Search vendor "Oracle"
Jd Edwards Enterpriseone
Search vendor "Oracle" for product "Jd Edwards Enterpriseone"
8.98.1.4
Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.98.1.4"
-
Affected
Oracle
Search vendor "Oracle"
Jd Edwards Enterpriseone
Search vendor "Oracle" for product "Jd Edwards Enterpriseone"
8.98.2.1
Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.98.2.1"
-
Affected
Oracle
Search vendor "Oracle"
Jd Edwards Enterpriseone Ep
Search vendor "Oracle" for product "Jd Edwards Enterpriseone Ep"
8.9
Search vendor "Oracle" for product "Jd Edwards Enterpriseone Ep" and version "8.9"
-
Affected
Oracle
Search vendor "Oracle"
Oneworld Tools
Search vendor "Oracle" for product "Oneworld Tools"
<= 24.1.3
Search vendor "Oracle" for product "Oneworld Tools" and version " <= 24.1.3"
-
Affected
Oracle
Search vendor "Oracle"
Peoplesoft And Jdedwards Product Suite
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite"
8.9
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9"
-
Affected
Oracle
Search vendor "Oracle"
Peoplesoft And Jdedwards Product Suite
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite"
8.9
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9"
bundle23
Affected
Oracle
Search vendor "Oracle"
Peoplesoft And Jdedwards Product Suite
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite"
8.9
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9"
bundle37
Affected
Oracle
Search vendor "Oracle"
Peoplesoft And Jdedwards Product Suite
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite"
8.9
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9"
bundle38
Affected
Oracle
Search vendor "Oracle"
Peoplesoft And Jdedwards Product Suite
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite"
8.9
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9"
bundle41
Affected
Oracle
Search vendor "Oracle"
Peoplesoft And Jdedwards Product Suite
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite"
8.9
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9"
gp_2010-e
Affected
Oracle
Search vendor "Oracle"
Peoplesoft And Jdedwards Product Suite
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite"
8.98.4.1
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.98.4.1"
-
Affected
Oracle
Search vendor "Oracle"
Peoplesoft And Jdedwards Suite Scm
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Suite Scm"
8.9
Search vendor "Oracle" for product "Peoplesoft And Jdedwards Suite Scm" and version "8.9"
bundle37
Affected