Oracle Jd Edwards Vulnerabilidad

Cronología

El año pasado

Versión

9.252
9.2.227
9.2.025
9.2.125
9.2.325

Contramedidas

Official Fix173
Temporary Fix0
Workaround0
Unavailable0
Not Defined9

Explotabilidad

High2
Functional0
Proof-of-Concept5
Unproven2
Not Defined173

Vector de acceso

Not Defined0
Physical0
Local11
Adjacent0
Network171

Autenticación

Not Defined0
High3
Low36
None143

La interacción del usuario

Not Defined0
Required38
None144

C3BM Index

El año pasado

CVSSv3 Base

≤10
≤20
≤32
≤44
≤519
≤626
≤743
≤840
≤910
≤1038

CVSSv3 Temp

≤10
≤20
≤32
≤44
≤520
≤650
≤723
≤841
≤94
≤1038

VulDB

≤10
≤20
≤32
≤44
≤519
≤628
≤737
≤839
≤914
≤1039

NVD

≤10
≤20
≤30
≤43
≤53
≤617
≤731
≤831
≤95
≤1040

CNA

≤10
≤20
≤31
≤41
≤53
≤64
≤75
≤82
≤94
≤100

Proveedor

≤10
≤20
≤30
≤42
≤53
≤66
≤715
≤87
≤96
≤1021

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k0
<2k0
<5k5
<10k47
<25k82
<50k10
<100k32
≥100k6

Explotar hoy

<1k104
<2k20
<5k16
<10k7
<25k31
<50k4
<100k0
≥100k0

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

Affected Versions (33): 4.0.1, 8.9, 8.50.07, 8.96.i1, 8.98, 8.98 SP 24, 9.0, 9.1, 9.1.5, 9.2, 9.2.0.5, 9.2.1, 9.2.2, 9.2.3, 9.2.4, 9.2.5, 9.2.5.1, 9.2.5.2, 9.2.5.3, 9.2.6, 9.2.6.1, 9.2.6.2, 9.2.6.3, 9.2.6.4, 9.2.7, 24, A9.1, A9.2, A9.3, A9.3.1, A9.4, Prior to 9.2.8, Prior to 9.2.8.1

Link to Product Website: https://www.oracle.com

Tipo de software: Enterprise Resource Planning Software

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2024-01-162.72.6Oracle JD Edwards EnterpriseOne Tools Package Build SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20957
2024-01-162.72.6Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20905
2024-01-164.34.1Oracle JD Edwards EnterpriseOne Tools Monitoring/Diagnostics SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20937
2024-01-166.56.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-2650
2024-01-167.57.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-3479
2024-01-166.46.3Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-28756
2024-01-167.06.9Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-1436
2024-01-169.89.6Oracle JD Edwards EnterpriseOne Tools Interactive Engine SEC desbordamiento de búfer$25k-$100k$5k-$25kNot DefinedOfficial Fix0.04CVE-2022-37434
2024-01-169.89.6Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning Remote Code Execution$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2023-32002
2023-10-175.35.2Oracle JD Edwards EnterpriseOne Tools Deployment SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2020-13956
2023-07-185.45.3Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-22050
2023-07-186.15.9Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-22055
2023-07-188.17.9Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-43548
2023-07-189.39.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security escalada de privilegios$25k-$100k$25k-$100kNot DefinedOfficial Fix0.00CVE-2022-1471
2023-04-183.33.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security divulgación de información$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-8908
2023-04-184.34.2Oracle JD Edwards EnterpriseOne Tools Interoperability SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21927
2023-04-185.45.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21936
2023-04-185.55.4Oracle JD Edwards EnterpriseOne Tools Deployment SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-36373
2023-04-185.15.1Oracle JD Edwards EnterpriseOne Tools Business Logic Infra SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-15250
2023-04-186.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41973
2023-04-186.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-30129
2023-04-187.57.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-42003
2023-04-187.57.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-25857
2023-04-188.17.9Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure desbordamiento de búfer$5k-$25k$5k-$25kNot DefinedOfficial Fix0.00CVE-2018-1311
2023-04-188.28.0Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud Manager vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-21824

157 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 157 results.

más entradas por Oracle

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!