CVE-2007-5527 β€” SQL Injection in Oracle E-business Suite

CWE-89 β€” SQL Injection6 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.8%
top 26.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle E-business Suite
Timeline
PublishedOct 17
Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10.2 have unknown impact and remote attack vectors, related to (1) Application Object Library component (APP01), (2) Contracts Integration (APP02), (3) Applications Manager (APP04), (4) Marketing component (APP05), and (5) Exchange component (APP07).

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

β–ΆNVDoracle/e-business_suite11.5.10.2, 11i, 12+2

πŸ”΄Vulnerability Details

4
GHSA
GHSA-93rm-7vw9-v636: SQL injection vulnerability in okxLOV↗2022-05-01
β–Ά
GHSA
GHSA-558p-xx6x-v8w9: Multiple unspecified vulnerabilities in Oracle E-Business Suite 11β†—2022-05-01
β–Ά
CVEList
CVE-2007-5766: SQL injection vulnerability in okxLOV↗2007-11-08
β–Ά
CVEList
CVE-2007-5527: Multiple unspecified vulnerabilities in Oracle E-Business Suite 11β†—2007-10-17
β–Ά
CVE-2007-5527 β€” SQL Injection in Oracle | cvebase