Oracle Enterpriseone Vulnérabilités

Chronologie

L'année dernière

Version

9.244
9.2.227
9.2.025
9.2.125
9.2.325

Contre-mesures

Official Fix154
Temporary Fix0
Workaround0
Unavailable0
Not Defined12

Exploitabilité

High1
Functional0
Proof-of-Concept9
Unproven2
Not Defined154

Vecteur d'accès

Not Defined0
Physical0
Local10
Adjacent0
Network156

Authentification

Not Defined0
High3
Low35
None128

Interaction de l'utilisateur

Not Defined0
Required38
None128

C3BM Index

L'année dernière

CVSSv3 Base

≤10
≤20
≤32
≤43
≤518
≤623
≤739
≤832
≤911
≤1038

CVSSv3 Temp

≤10
≤20
≤32
≤43
≤519
≤645
≤720
≤834
≤97
≤1036

VulDB

≤10
≤20
≤32
≤43
≤518
≤624
≤735
≤830
≤915
≤1039

NVD

≤10
≤20
≤30
≤42
≤52
≤614
≤729
≤828
≤95
≤1036

CNA

≤10
≤20
≤31
≤41
≤53
≤64
≤75
≤82
≤94
≤100

Fournisseur

≤10
≤20
≤30
≤42
≤52
≤63
≤715
≤85
≤96
≤1019

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k0
<2k0
<5k4
<10k40
<25k74
<50k13
<100k30
≥100k5

Exploiter aujourd'hui

<1k88
<2k22
<5k16
<10k8
<25k30
<50k2
<100k0
≥100k0

Exploiter le volume du marché

L'année dernière

🔴 CTI Activités

Affected Versions (37): 4.0.1, 8.9, 8.50.07, 8.94, 8.95, 8.95.f1, 8.95.j1, 8.95.p1, 8.96, 8.96.d1, 8.96.i1, 8.98, 8.98 SP 24, 9.0, 9.1, 9.1.5, 9.2, 9.2.0.5, 9.2.1, 9.2.2, 9.2.3, 9.2.4, 9.2.5, 9.2.5.1, 9.2.5.2, 9.2.5.3, 9.2.6, 9.2.6.1, 9.2.6.2, 9.2.6.3, 9.2.6.4, 9.2.7, 24, Prior to 9.2.8, Prior to 9.2.8.1, Sp23 L1, Sp23 O2

Link to Product Website: https://www.oracle.com

Type de logiciel: Enterprise Resource Planning Software

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
16/01/20242.72.6Oracle JD Edwards EnterpriseOne Tools Package Build SEC dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20957
16/01/20242.72.6Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20905
16/01/20244.34.1Oracle JD Edwards EnterpriseOne Tools Monitoring/Diagnostics SEC divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20937
16/01/20246.56.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-2650
16/01/20247.57.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-3479
16/01/20246.46.3Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-28756
16/01/20247.06.9Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-1436
16/01/20249.89.6Oracle JD Edwards EnterpriseOne Tools Interactive Engine SEC buffer overflow$25k-$100k$5k-$25kNot DefinedOfficial Fix0.04CVE-2022-37434
16/01/20249.89.6Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning Remote Code Execution$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2023-32002
17/10/20235.35.2Oracle JD Edwards EnterpriseOne Tools Deployment SEC vulnérabilité inconnue$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2020-13956
18/07/20235.45.3Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security vulnérabilité inconnue$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-22050
18/07/20236.15.9Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnérabilité inconnue$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-22055
18/07/20238.17.9Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-43548
18/07/20239.39.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security elévation de privilèges$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-1471
18/04/20233.33.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security divulgation de l'information$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-8908
18/04/20234.34.2Oracle JD Edwards EnterpriseOne Tools Interoperability SEC divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21927
18/04/20235.45.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnérabilité inconnue$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21936
18/04/20235.55.4Oracle JD Edwards EnterpriseOne Tools Deployment SEC dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-36373
18/04/20235.15.1Oracle JD Edwards EnterpriseOne Tools Business Logic Infra SEC divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-15250
18/04/20236.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41973
18/04/20236.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-30129
18/04/20237.57.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-42003
18/04/20237.57.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-25857
18/04/20238.17.9Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure buffer overflow$5k-$25k$5k-$25kNot DefinedOfficial Fix0.00CVE-2018-1311
18/04/20238.28.0Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud Manager vulnérabilité inconnue$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-21824

141 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 141 results.

plus d'entrées par Oracle

PrécédentAperçuSuivant

Interested in the pricing of exploits?

See the underground prices here!