Oracle Enterpriseone Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

9.244
9.2.227
9.2.025
9.2.125
9.2.325

Przeciwdziałanie

Official Fix154
Temporary Fix0
Workaround0
Unavailable0
Not Defined12

Wykorzystywanie

High2
Functional0
Proof-of-Concept9
Unproven2
Not Defined153

Wektor dostępu

Not Defined0
Physical0
Local10
Adjacent0
Network156

Uwierzytelnianie

Not Defined0
High3
Low35
None128

Interakcja z użytkownikiem

Not Defined0
Required38
None128

C3BM Index

Ostatni rok

CVSSv3 Base

≤10
≤20
≤32
≤43
≤518
≤623
≤739
≤832
≤911
≤1038

CVSSv3 Temp

≤10
≤20
≤32
≤43
≤519
≤645
≤720
≤834
≤97
≤1036

VulDB

≤10
≤20
≤32
≤43
≤518
≤624
≤735
≤830
≤915
≤1039

NVD

≤10
≤20
≤30
≤42
≤52
≤614
≤729
≤828
≤95
≤1036

CNA

≤10
≤20
≤31
≤41
≤53
≤64
≤75
≤82
≤94
≤100

Sprzedawca

≤10
≤20
≤30
≤42
≤52
≤63
≤715
≤85
≤96
≤1019

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k0
<2k0
<5k4
<10k40
<25k74
<50k13
<100k30
≥100k5

Wykorzystaj dzisiaj

<1k89
<2k24
<5k14
<10k6
<25k30
<50k3
<100k0
≥100k0

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

Affected Versions (37): 4.0.1, 8.9, 8.50.07, 8.94, 8.95, 8.95.f1, 8.95.j1, 8.95.p1, 8.96, 8.96.d1, 8.96.i1, 8.98, 8.98 SP 24, 9.0, 9.1, 9.1.5, 9.2, 9.2.0.5, 9.2.1, 9.2.2, 9.2.3, 9.2.4, 9.2.5, 9.2.5.1, 9.2.5.2, 9.2.5.3, 9.2.6, 9.2.6.1, 9.2.6.2, 9.2.6.3, 9.2.6.4, 9.2.7, 24, Prior to 9.2.8, Prior to 9.2.8.1, Sp23 L1, Sp23 O2

Link to Product Website: https://www.oracle.com

Typ oprogramowania: Enterprise Resource Planning Software

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2024-01-162.72.6Oracle JD Edwards EnterpriseOne Tools Package Build SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20957
2024-01-162.72.6Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20905
2024-01-164.34.1Oracle JD Edwards EnterpriseOne Tools Monitoring/Diagnostics SEC information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20937
2024-01-166.56.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-2650
2024-01-167.57.3Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-3479
2024-01-166.46.3Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-28756
2024-01-167.06.9Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-1436
2024-01-169.89.6Oracle JD Edwards EnterpriseOne Tools Interactive Engine SEC memory corruption$25k-$100k$5k-$25kNot DefinedOfficial Fix0.04CVE-2022-37434
2024-01-169.89.6Oracle JD Edwards EnterpriseOne Tools One-Click Provisioning Remote Code Execution$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2023-32002
2023-10-175.35.2Oracle JD Edwards EnterpriseOne Tools Deployment SEC nieznana luka$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-13956
2023-07-185.45.3Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security nieznana luka$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-22050
2023-07-186.15.9Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC nieznana luka$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-22055
2023-07-188.17.9Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-43548
2023-07-189.39.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security privilege escalation$25k-$100k$25k-$100kNot DefinedOfficial Fix0.00CVE-2022-1471
2023-04-183.33.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-8908
2023-04-184.34.2Oracle JD Edwards EnterpriseOne Tools Interoperability SEC information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21927
2023-04-185.45.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC nieznana luka$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-21936
2023-04-185.55.4Oracle JD Edwards EnterpriseOne Tools Deployment SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-36373
2023-04-185.15.1Oracle JD Edwards EnterpriseOne Tools Business Logic Infra SEC information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-15250
2023-04-186.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41973
2023-04-186.56.3Oracle JD Edwards EnterpriseOne Tools Interoperability SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-30129
2023-04-187.57.3Oracle JD Edwards EnterpriseOne Tools Web Runtime SEC denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-42003
2023-04-187.57.2Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-25857
2023-04-188.17.9Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure memory corruption$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-1311
2023-04-188.28.0Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud Manager nieznana luka$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-21824

141 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 141 results.

więcej wpisów autorstwa Oracle

PoprzedniPrzeglądKolejny

Do you want to use VulDB in your project?

Use the official API to access entries easily!