Oracle Jd Edwards Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

9.252
9.2.227
9.2.025
9.2.125
9.2.325

Contromisure

Official Fix173
Temporary Fix0
Workaround0
Unavailable0
Not Defined9

Sfruttabilità

High3
Functional0
Proof-of-Concept5
Unproven2
Not Defined172

Accesso al vettore

Not Defined0
Physical0
Local11
Adjacent0
Network171

Autenticazione

Not Defined0
High3
Low36
None143

Interazione dell'utente

Not Defined0
Required38
None144

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤32
≤44
≤519
≤626
≤743
≤840
≤910
≤1038

CVSSv3 Temp

≤10
≤20
≤32
≤44
≤520
≤650
≤723
≤841
≤94
≤1038

VulDB

≤10
≤20
≤32
≤44
≤519
≤628
≤737
≤839
≤914
≤1039

NVD

≤10
≤20
≤30
≤43
≤53
≤617
≤731
≤831
≤95
≤1040

CNA

≤10
≤20
≤31
≤41
≤53
≤64
≤75
≤82
≤94
≤100

Fornitore

≤10
≤20
≤30
≤42
≤53
≤66
≤715
≤87
≤96
≤1021

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k0
<5k5
<10k47
<25k82
<50k10
<100k32
≥100k6

Exploiter aujourd'hui

<1k101
<2k24
<5k16
<10k6
<25k29
<50k6
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (33): 4.0.1, 8.9, 8.50.07, 8.96.i1, 8.98, 8.98 SP 24, 9.0, 9.1, 9.1.5, 9.2, 9.2.0.5, 9.2.1, 9.2.2, 9.2.3, 9.2.4, 9.2.5, 9.2.5.1, 9.2.5.2, 9.2.5.3, 9.2.6, 9.2.6.1, 9.2.6.2, 9.2.6.3, 9.2.6.4, 9.2.7, 24, A9.1, A9.2, A9.3, A9.3.1, A9.4, Prior to 9.2.8, Prior to 9.2.8.1

Link to Product Website: https://www.oracle.com

Tipo di software: Enterprise Resource Planning Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
16/01/20242.72.6Oracle JD Edwards EnterpriseOne Tools Package Build SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20957
16/01/20242.72.6Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20905
16/01/20244.34.1Oracle JD Edwards EnterpriseOne Tools Monitoring/Diagnostics SEC rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20937
16/01/20246.56.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-2650
16/01/20247.57.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-3479
16/01/20246.46.3Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-28756
16/01/20247.06.9Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-1436
16/01/20249.89.6Oracle JD Edwards EnterpriseOne Tools Interactive Engine SEC buffer overflow$25k-$100k$5k-$25kNot DefinedOfficial Fix0.04CVE-2022-37434
16/01/20249.89.6Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning Remote Code Execution$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2023-32002
17/10/20235.35.2Oracle JD Edwards EnterpriseOne Tools Deployment SEC vulnerabilità sconosciuta$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2020-13956
18/07/20235.45.3Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security vulnerabilità sconosciuta$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-22050
18/07/20236.15.9Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilità sconosciuta$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-22055
18/07/20238.17.9Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-43548
18/07/20239.39.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security escalazione di privilegi$25k-$100k$25k-$100kNot DefinedOfficial Fix0.00CVE-2022-1471
18/04/20233.33.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-8908
18/04/20234.34.2Oracle JD Edwards EnterpriseOne Tools Interoperability SEC rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21927
18/04/20235.45.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC vulnerabilità sconosciuta$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21936
18/04/20235.55.4Oracle JD Edwards EnterpriseOne Tools Deployment SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-36373
18/04/20235.15.1Oracle JD Edwards EnterpriseOne Tools Business Logic Infra SEC rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-15250
18/04/20236.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41973
18/04/20236.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-30129
18/04/20237.57.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-42003
18/04/20237.57.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-25857
18/04/20238.17.9Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure buffer overflow$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-1311
18/04/20238.28.0Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud Manager vulnerabilità sconosciuta$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-21824

157 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 157 results.

altre voci di Oracle

PrecedenteVisione D'insiemeIl prossimo

Do you know our Splunk app?

Download it now for free!