Oracle Jd Edwards Enterpriseone Tools Vulnerabilidad

Cronología

El año pasado

Versión

9.240
9.2.222
9.2.020
9.2.120
9.2.320

Contramedidas

Official Fix128
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

Explotabilidad

High1
Functional0
Proof-of-Concept1
Unproven2
Not Defined124

Vector de acceso

Not Defined0
Physical0
Local7
Adjacent0
Network121

Autenticación

Not Defined0
High3
Low22
None103

La interacción del usuario

Not Defined0
Required36
None92

C3BM Index

El año pasado

CVSSv3 Base

≤10
≤20
≤32
≤42
≤512
≤615
≤736
≤826
≤99
≤1026

CVSSv3 Temp

≤10
≤20
≤32
≤42
≤513
≤636
≤717
≤828
≤94
≤1026

VulDB

≤10
≤20
≤32
≤42
≤512
≤616
≤733
≤823
≤913
≤1027

NVD

≤10
≤20
≤30
≤42
≤52
≤612
≤728
≤822
≤95
≤1028

CNA

≤10
≤20
≤31
≤40
≤52
≤62
≤75
≤82
≤93
≤100

Proveedor

≤10
≤20
≤30
≤42
≤52
≤63
≤715
≤84
≤96
≤1015

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k0
<2k0
<5k2
<10k32
<25k62
<50k5
<100k22
≥100k5

Explotar hoy

<1k71
<2k16
<5k13
<10k4
<25k22
<50k2
<100k0
≥100k0

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

Affected Versions (24): 4.0.1, 8.98, 8.98 SP 24, 9.1, 9.1.5, 9.2, 9.2.0.5, 9.2.1, 9.2.2, 9.2.3, 9.2.4, 9.2.5, 9.2.5.1, 9.2.5.2, 9.2.5.3, 9.2.6, 9.2.6.1, 9.2.6.2, 9.2.6.3, 9.2.6.4, 9.2.7, 24, Prior to 9.2.8, Prior to 9.2.8.1

Link to Product Website: https://www.oracle.com

Tipo de software: Enterprise Resource Planning Software

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2024-01-162.72.6Oracle JD Edwards EnterpriseOne Tools Package Build SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20957
2024-01-162.72.6Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20905
2024-01-164.34.1Oracle JD Edwards EnterpriseOne Tools Monitoring/Diagnostics SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20937
2024-01-166.56.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-2650
2024-01-167.57.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-3479
2024-01-166.46.3Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-28756
2024-01-169.89.6Oracle JD Edwards EnterpriseOne Tools Interactive Engine SEC desbordamiento de búfer$25k-$100k$5k-$25kNot DefinedOfficial Fix0.04CVE-2022-37434
2024-01-169.89.6Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning Remote Code Execution$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2023-32002
2023-10-175.35.2Oracle JD Edwards EnterpriseOne Tools Deployment SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2020-13956
2023-07-186.15.9Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-22055
2023-07-188.17.9Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-43548
2023-04-184.34.2Oracle JD Edwards EnterpriseOne Tools Interoperability SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21927
2023-04-185.45.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21936
2023-04-185.55.4Oracle JD Edwards EnterpriseOne Tools Deployment SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-36373
2023-04-185.15.1Oracle JD Edwards EnterpriseOne Tools Business Logic Infra SEC divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-15250
2023-04-186.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41973
2023-04-186.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-30129
2023-04-187.57.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-42003
2023-04-188.17.9Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure desbordamiento de búfer$5k-$25k$5k-$25kNot DefinedOfficial Fix0.00CVE-2018-1311
2023-04-188.28.0Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud Manager vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-21824
2023-04-189.89.6Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC desbordamiento de búfer$25k-$100k$25k-$100kNot DefinedOfficial Fix0.00CVE-2022-2274
2023-04-189.89.6Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud Manager desbordamiento de búfer$25k-$100k$5k-$25kNot DefinedOfficial Fix0.04CVE-2022-28738
2023-01-175.55.4Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2022-26336
2022-10-195.45.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-21629
2022-10-196.15.9Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-21630

103 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 103 results.

más entradas por Oracle

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!