Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
e-business suite vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-2496
Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker...
Oracle E-business Suite 12.2.4
Oracle E-business Suite 12.2.6
Oracle E-business Suite 12.2.7
Oracle E-business Suite 12.2.8
Oracle E-business Suite 12.1.3
Oracle E-business Suite 12.2.3
Oracle E-business Suite 12.2.5
5.8
CVSSv2
CVE-2019-2497
Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker...
Oracle E-business Suite 12.2.3
Oracle E-business Suite 12.2.5
Oracle E-business Suite 12.2.6
Oracle E-business Suite 12.2.7
Oracle E-business Suite 12.2.8
Oracle E-business Suite 12.1.3
Oracle E-business Suite 12.2.4
10
CVSSv2
CVE-2004-0543
Multiple SQL injection vulnerabilities in Oracle Applications 11.0 and Oracle E-Business Suite 11.5.1 up to and including 11.5.8 allow remote malicious users to execute arbitrary SQL procedures and queries.
Oracle E-business Suite 11.5.6
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.2
Oracle E-business Suite 11.5.3
Oracle Applications 11.0
Oracle E-business Suite 11.5.1
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11i
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
7.5
CVSSv2
CVE-2006-1035
Unspecified vulnerability in the Oracle Diagnostics module 2.2 and previous versions allows remote malicious users to access diagnostics tests via unknown attack vectors.
Oracle Diagnostics 2.2
Oracle E-business Suite 11.5.10.1
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.10
Oracle E-business Suite 11.5.10.2
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.9
Oracle E-business Suite 11.5.3
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
Oracle E-business Suite 11.5.6
Oracle Diagnostics 2.0
Oracle Diagnostics 2.1
7.5
CVSSv2
CVE-2006-1037
SQL injection vulnerability in the Oracle Diagnostics module 2.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via unknown attack vectors.
Oracle Diagnostics 2.0
Oracle Diagnostics 2.1
Oracle E-business Suite 11.5.5
Oracle E-business Suite 11.5.6
Oracle E-business Suite 11.5.10.1
Oracle E-business Suite 11.5.10.2
Oracle E-business Suite 11.5.9
Oracle Diagnostics 2.2
Oracle E-business Suite 11.5.10
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.3
Oracle E-business Suite 11.5.4
5
CVSSv2
CVE-2014-6472
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote malicious users to affect integrity via vectors related to LOV, a different vulnerability than CVE-2014-6539.
Oracle E-business Suite 11.5.10.2
Oracle E-business Suite 12.0.6
Oracle E-business Suite 12.1.3
Oracle E-business Suite 12.2.3
Oracle E-business Suite 12.2.2
Oracle E-business Suite 12.2.4
3.5
CVSSv2
CVE-2014-6525
Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect integrity via unknown vectors related to Templates.
Oracle E-business Suite 12.2.4
Oracle E-business Suite 12.2.3
Oracle E-business Suite 12.2.2
Oracle E-business Suite 12.0.6
Oracle E-business Suite 12.1.3
Oracle E-business Suite 11.5.10.2
4.3
CVSSv2
CVE-2014-6539
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote malicious users to affect integrity via vectors related to LOV, a different vulnerability than CVE-2014-6472.
Oracle E-business Suite 12.2.4
Oracle E-business Suite 11.5.10.2
Oracle E-business Suite 12.1.3
Oracle E-business Suite 12.2.3
Oracle E-business Suite 12.0.6
Oracle E-business Suite 12.2.2
4.6
CVSSv2
CVE-2014-6556
Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to AD_DDL.
Oracle E-business Suite 12.2.2
Oracle E-business Suite 12.1.3
Oracle E-business Suite 12.0.6
Oracle E-business Suite 11.5.10.2
Oracle E-business Suite 12.2.4
Oracle E-business Suite 12.2.3
4
CVSSv2
CVE-2018-2684
Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Registration Process). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows high privileged attacker with...
Oracle E-business Suite 12.2.4
Oracle E-business Suite 12.1.3
Oracle E-business Suite 12.2.3
Oracle E-business Suite 12.2.7
Oracle E-business Suite 12.2.5
Oracle E-business Suite 12.2.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »