Oracle E-business Suite Vulnerabilità

Sequenza temporale

Versione

12.1.3284
12.2.3203
12.2.4202
12.1.2197
12.1.1194

Contromisure

Official Fix348
Temporary Fix0
Workaround0
Unavailable0
Not Defined135

Sfruttabilità

High1
Functional0
Proof-of-Concept74
Unproven32
Not Defined376

Accesso al vettore

Not Defined0
Physical2
Local25
Adjacent1
Network455

Autenticazione

Not Defined0
High11
Low79
None393

Interazione dell'utente

Not Defined0
Required124
None359

C3BM Index

CVSSv3 Base

≤10
≤20
≤32
≤421
≤543
≤6155
≤769
≤8120
≤937
≤1036

CVSSv3 Temp

≤10
≤20
≤34
≤427
≤563
≤6137
≤7142
≤862
≤928
≤1020

VulDB

≤10
≤20
≤32
≤421
≤542
≤6159
≤7154
≤832
≤937
≤1036

NVD

≤10
≤20
≤30
≤42
≤510
≤622
≤713
≤88
≤9121
≤1011

CNA

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤81
≤90
≤101

Fornitore

≤10
≤20
≤30
≤41
≤56
≤619
≤74
≤88
≤915
≤107

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k1
<5k6
<10k63
<25k321
<50k86
<100k6
≥100k0

Exploiter aujourd'hui

<1k391
<2k16
<5k14
<10k31
<25k31
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (79): 1.2.1, 2.0, 2.1, 2.2, 3.5, 3.6, 4.3, 6.0.03, 6.1, 6.1.1, 6.2.3, 6.2.4, 7-9, 7.1.1.10.1, 9.2.0.7, 10.0, 10.1, 10.2, 10.3, 10.4, 10.5, 10.6, 10.7, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9, 11.5.10.1, 11.5.10.2, 11.5.10cu1, 11.5.10cu2, 11.6, 11i, 11i10cu2, 12, 12.0.1, 12.0.2, 12.0.3, 12.0.4, 12.0.5, 12.0.6, 12.01.2003, 12.1, 12.1.1, 12.1.2, 12.1.3, 12.2, 12.2.1, 12.2.2, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7, 12.2.8, 12.2.9, 12.2.11, 12.2.12, 12.2.13, 13.4.1, 19.3.2, 22.1, 22.1.1, AMP 12.1.0.4, AMP 13.1.1.1, AMP 121020, AMP 121030, Suite 11.5.10.2

Link to Product Website: https://www.oracle.com

Tipo di software: Supply Chain Management Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
17/04/20245.35.2Oracle E-Business Suite Technology Stack Templates rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-20990
17/04/20248.18.0Oracle E-Business Suite Workflow Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-21071
19/10/20229.89.6Oracle Application Management Pack for E-Business Suite EBS EM Plugin sql injection$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-23305
19/07/20229.89.6Oracle E-Business Suite Information Discovery Packaging issues sql injection$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-23305
20/05/20226.46.3Oracle E-Business Suite Manage Proxies autenticazione debole$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-21500
19/04/20226.66.4Oracle E-Business Suite Information Discovery Logging escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-44832
19/04/20229.89.6Oracle E-Business Suite Cloud Manager and Cloud Backup Module Logging sql injection$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-23305
21/04/20217.37.0Oracle Agile Product Lifecycle Management Integration Pack for E-Business Suite Installer escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-10086
21/04/20216.15.8Oracle E-Business Suite Technology Stack Attachments/iRecruitment/Contracts (AntiSamy) cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2017-14735
19/01/20217.57.3Oracle Agile Product Lifecycle Management Integration Pack for E-Business Suite Installation Issues XML External Entity$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-25649
20/10/20209.18.7Oracle E-Business Suite Secure Enterprise Search Search Integration Engine vulnerabilità sconosciuta$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-14805
16/07/20193.73.6Oracle E-Business Suite jackson-databind escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2761
16/07/20195.35.1Oracle E-Business Suite jackson-databind escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2809
16/07/20195.85.6Oracle E-Business Suite Jackson-databind escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2019-2783
16/07/20195.85.6Oracle E-Business Suite jackson-databind escalazione di privilegi$5k-$25kCalcoloNot DefinedOfficial Fix0.00CVE-2019-2773
16/07/20196.56.2Oracle E-Business Suite OpenSSL escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2019-2825
16/07/20198.27.8Oracle E-Business Suite OpenSSL escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2672
16/07/20198.27.8Oracle E-Business Suite Apache ActiveMQ escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2668
16/07/20198.27.8Oracle E-Business Suite Apache ActiveMQ escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2666
16/07/20198.27.8Oracle E-Business Suite Bouncy Castle Java Library escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2829
16/07/20198.27.8Oracle E-Business Suite Apache HTTP Server escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2837
16/07/20198.27.9Oracle E-Business Suite Apache CXF escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-2782
16/07/20199.18.7Oracle E-Business Suite Apache Commons FileUpload escalazione di privilegi$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2019-2775
16/07/20199.69.2Oracle E-Business Suite cURL escalazione di privilegi$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2019-2828
16/10/20184.34.2Oracle E-Business Suite Oracle Applications Framework escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-2971

458 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 458 results.

altre voci di Oracle

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!