Oracle E-business Suite Vulnerabilities

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Version

12.1.3276
12.2.3196
12.2.4196
12.1.2184
12.1.1182

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Remediation

Official Fix344
Temporary Fix0
Workaround0
Unavailable0
Not Defined138

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploitability

High2
Functional0
Proof-of-Concept72
Unproven28
Not Defined380

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Access Vector

Not Defined0
Physical0
Local26
Adjacent0
Network456

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Authentication

Not Defined0
High12
Low78
None392

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

User Interaction

Not Defined0
Required124
None358

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Base

≤10
≤20
≤30
≤430
≤538
≤6152
≤766
≤8138
≤932
≤1026

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Temp

≤10
≤20
≤32
≤436
≤548
≤6144
≤7152
≤864
≤922
≤1014

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

VulDB

≤10
≤20
≤30
≤430
≤538
≤6154
≤7154
≤846
≤934
≤1026

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

NVD

≤10
≤20
≤30
≤42
≤510
≤626
≤712
≤86
≤9118
≤106

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤82
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

≤10
≤20
≤30
≤42
≤54
≤620
≤74
≤82
≤916
≤102

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit 0-day

<1k0
<2k0
<5k10
<10k62
<25k328
<50k80
<100k2
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Today

<1k398
<2k12
<5k16
<10k18
<25k38
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

🔴 CTI Activities

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Affected Versions (77): 1.2.1, 2.0, 2.1, 2.2, 3.5, 3.6, 4.3, 6.0.03, 6.1, 6.1.1, 6.2.3, 6.2.4, 7-9, 7.1.1.10.1, 9.2.0.7, 10.0, 10.1, 10.2, 10.3, 10.4, 10.5, 10.6, 10.7, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9, 11.5.10.1, 11.5.10.2, 11.5.10cu1, 11.5.10cu2, 11.6, 11i, 11i10cu2, 12, 12.0.1, 12.0.2, 12.0.3, 12.0.4, 12.0.5, 12.0.6, 12.01.2003, 12.1, 12.1.1, 12.1.2, 12.1.3, 12.2, 12.2.1, 12.2.2, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7, 12.2.8, 12.2.9, 12.2.11, 13.4.1, 19.3.2, 22.1, 22.1.1, AMP 12.1.0.4, AMP 13.1.1.1, AMP 121020, AMP 121030, Suite 11.5.10.2

Link to Product Website: https://www.oracle.com

PublishedBaseTempVulnerability0dayTodayExpRemCTICVE
10/19/20229.89.6Oracle Application Management Pack for E-Business Suite EBS EM Plugin sql injection$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-23305
07/19/20229.89.6Oracle E-Business Suite Information Discovery Packaging issues sql injection$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-23305
05/20/20226.46.3Oracle E-Business Suite Manage Proxies improper authentication$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2022-21500
04/19/20226.66.4Oracle E-Business Suite Information Discovery Logging input validation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-44832
04/19/20229.89.6Oracle E-Business Suite Cloud Manager and Cloud Backup Module Logging sql injection$25k-$100k$5k-$25kNot DefinedOfficial Fix0.02CVE-2022-23305
04/21/20217.37.0Oracle Agile Product Lifecycle Management Integration Pack for E-Business Suite Installer deserialization$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-10086
04/21/20216.15.8Oracle E-Business Suite Technology Stack Attachments/iRecruitment/Contracts (AntiSamy) cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2017-14735
01/19/20217.57.3Oracle Agile Product Lifecycle Management Integration Pack for E-Business Suite Installation Issues xml external entity reference$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-25649
10/20/20209.18.7Oracle E-Business Suite Secure Enterprise Search Search Integration Engine unknown vulnerability$25k-$100k$0-$5kNot DefinedOfficial Fix0.02CVE-2020-14805
07/16/20193.73.6Oracle E-Business Suite jackson-databind access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2761
07/16/20195.35.1Oracle E-Business Suite jackson-databind access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2019-2809
07/16/20195.85.6Oracle E-Business Suite Jackson-databind access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2783
07/16/20195.85.6Oracle E-Business Suite jackson-databind access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2773
07/16/20196.56.2Oracle E-Business Suite OpenSSL access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2825
07/16/20198.27.8Oracle E-Business Suite OpenSSL access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2672
07/16/20198.27.8Oracle E-Business Suite Apache ActiveMQ access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2668
07/16/20198.27.8Oracle E-Business Suite Apache ActiveMQ access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2666
07/16/20198.27.8Oracle E-Business Suite Bouncy Castle Java Library access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2829
07/16/20198.27.8Oracle E-Business Suite Apache HTTP Server access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2837
07/16/20198.27.9Oracle E-Business Suite Apache CXF access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2019-2782
07/16/20199.18.7Oracle E-Business Suite Apache Commons FileUpload access control$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2019-2775
07/16/20199.69.2Oracle E-Business Suite cURL access control$25k-$100k$5k-$25kNot DefinedOfficial Fix0.02CVE-2019-2828
10/16/20184.34.2Oracle E-Business Suite Oracle Applications Framework access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-2971
10/16/20184.74.6Oracle E-Business Suite Oracle Email Center access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-3256
10/16/20185.35.2Oracle E-Business Suite Oracle Applications Manager information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2018-3237

456 more entries are not shown

more entries by Oracle

Interested in the pricing of exploits?

See the underground prices here!