CVE-2007-5528SQL Injection in Oracle E-business Suite

CWE-89SQL Injection6 documents3 sources
Severity
10.0CRITICALNVD
NVD7.5CNA7.5
EPSS
1.1%
top 21.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle E-business Suite
Timeline
PublishedOct 17
Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Oracle E-Business Suite 12.0.2 have unknown impact and attack vectors related to (1) Public Sector Human Resources (APP03) and (2) Quoting component (APP06).

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDoracle/e-business_suite11i, 12, 12.0.2+2

🔴Vulnerability Details

4
GHSA
GHSA-93rm-7vw9-v636: SQL injection vulnerability in okxLOV2022-05-01
GHSA
GHSA-9w58-jgcc-jhrf: Multiple unspecified vulnerabilities in Oracle E-Business Suite 122022-05-01
CVEList
CVE-2007-5766: SQL injection vulnerability in okxLOV2007-11-08
CVEList
CVE-2007-5528: Multiple unspecified vulnerabilities in Oracle E-Business Suite 122007-10-17
CVE-2007-5528 — SQL Injection in Oracle | cvebase