Oracle Enterpriseone Vulnerabilidad

Cronología

El año pasado

Versión

9.244
9.2.227
9.2.025
9.2.125
9.2.325

Contramedidas

Official Fix154
Temporary Fix0
Workaround0
Unavailable0
Not Defined12

Explotabilidad

High2
Functional0
Proof-of-Concept9
Unproven2
Not Defined153

Vector de acceso

Not Defined0
Physical0
Local10
Adjacent0
Network156

Autenticación

Not Defined0
High3
Low35
None128

La interacción del usuario

Not Defined0
Required38
None128

C3BM Index

El año pasado

CVSSv3 Base

≤10
≤20
≤32
≤43
≤518
≤623
≤739
≤832
≤911
≤1038

CVSSv3 Temp

≤10
≤20
≤32
≤43
≤519
≤645
≤720
≤834
≤97
≤1036

VulDB

≤10
≤20
≤32
≤43
≤518
≤624
≤735
≤830
≤915
≤1039

NVD

≤10
≤20
≤30
≤42
≤52
≤614
≤729
≤828
≤95
≤1036

CNA

≤10
≤20
≤31
≤41
≤53
≤64
≤75
≤82
≤94
≤100

Proveedor

≤10
≤20
≤30
≤42
≤52
≤63
≤715
≤85
≤96
≤1019

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k0
<2k0
<5k4
<10k40
<25k74
<50k13
<100k30
≥100k5

Explotar hoy

<1k90
<2k23
<5k14
<10k6
<25k29
<50k4
<100k0
≥100k0

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

Affected Versions (37): 4.0.1, 8.9, 8.50.07, 8.94, 8.95, 8.95.f1, 8.95.j1, 8.95.p1, 8.96, 8.96.d1, 8.96.i1, 8.98, 8.98 SP 24, 9.0, 9.1, 9.1.5, 9.2, 9.2.0.5, 9.2.1, 9.2.2, 9.2.3, 9.2.4, 9.2.5, 9.2.5.1, 9.2.5.2, 9.2.5.3, 9.2.6, 9.2.6.1, 9.2.6.2, 9.2.6.3, 9.2.6.4, 9.2.7, 24, Prior to 9.2.8, Prior to 9.2.8.1, Sp23 L1, Sp23 O2

Link to Product Website: https://www.oracle.com

Tipo de software: Enterprise Resource Planning Software

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2024-01-162.72.6Oracle JD Edwards EnterpriseOne Tools Package Build SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20957
2024-01-162.72.6Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20905
2024-01-164.34.1Oracle JD Edwards EnterpriseOne Tools Monitoring/Diagnostics SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20937
2024-01-166.56.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-2650
2024-01-167.57.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-3479
2024-01-166.46.3Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-28756
2024-01-167.06.9Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-1436
2024-01-169.89.6Oracle JD Edwards EnterpriseOne Tools Interactive Engine SEC desbordamiento de búfer$25k-$100k$25k-$100kNot DefinedOfficial Fix0.04CVE-2022-37434
2024-01-169.89.6Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning Remote Code Execution$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2023-32002
2023-10-175.35.2Oracle JD Edwards EnterpriseOne Tools Deployment SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-13956
2023-07-185.45.3Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-22050
2023-07-186.15.9Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-22055
2023-07-188.17.9Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-43548
2023-07-189.39.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security escalada de privilegios$25k-$100k$25k-$100kNot DefinedOfficial Fix0.00CVE-2022-1471
2023-04-183.33.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security divulgación de información$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-8908
2023-04-184.34.2Oracle JD Edwards EnterpriseOne Tools Interoperability SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21927
2023-04-185.45.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21936
2023-04-185.55.4Oracle JD Edwards EnterpriseOne Tools Deployment SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-36373
2023-04-185.15.1Oracle JD Edwards EnterpriseOne Tools Business Logic Infra SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-15250
2023-04-186.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41973
2023-04-186.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-30129
2023-04-187.57.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-42003
2023-04-187.57.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-25857
2023-04-188.17.9Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure desbordamiento de búfer$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-1311
2023-04-188.28.0Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud Manager vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-21824

141 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 141 results.

más entradas por Oracle

AnteriorVisión De ConjuntoPróximo

Interested in the pricing of exploits?

See the underground prices here!