cbcvebase.

Oracle E-Business Suite vulnerabilities

331 known vulnerabilities affecting oracle/e-business_suite.

Total CVEs
331
CISA KEV
1
actively exploited
Public exploits
5
Exploited in wild
1
Severity breakdown
CRITICAL55HIGH50MEDIUM184LOW42

Vulnerabilities

Page 7 of 17
CVE-2015-0393MEDIUMCVSS 6.0v11.5.10.2v12.0.6+4 more2015-01-21
CVE-2015-0393 [MEDIUM] CVE-2015-0393: Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 11.5.1 Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to DB Privileges. NOTE: the previous information is from the January 2015 CPU. Oracle has not co
nvd
CVE-2015-0404MEDIUMCVSS 4.3v11.5.10.2v12.0.6+4 more2015-01-21
CVE-2015-0404 [MEDIUM] CVE-2015-0404: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via unknown vectors related to Error Messages.
nvd
CVE-2014-6581MEDIUMCVSS 6.4v11.5.10.2v12.0.4+8 more2015-01-21
CVE-2014-6581 [MEDIUM] CVE-2014-6581: Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 1 Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Extract/Load Programs.
nvd
CVE-2014-6583MEDIUMCVSS 6.4v11.5.10.2v12.0.4+5 more2015-01-21
CVE-2014-6583 [MEDIUM] CVE-2014-6583: Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2, 12 Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, and 12.1.3. allows remote attackers to affect confidentiality and integrity via unknown vectors related to Audience.
nvd
CVE-2014-6525LOWCVSS 3.5v11.5.10.2v12.0.6+4 more2015-01-21
CVE-2014-6525 [LOW] CVE-2014-6525: Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Bu Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect integrity via unknown vectors related to Templates.
nvd
CVE-2014-4278HIGHCVSS 7.5v12.0.6v12.1.3+3 more2014-10-15
CVE-2014-4278 [HIGH] CVE-2014-4278: Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Forms.
nvd
CVE-2014-6561MEDIUMCVSS 4.3v12.0.4v12.0.6+6 more2014-10-15
CVE-2014-6561 [MEDIUM] CVE-2014-6561: Unspecified vulnerability in the Oracle Payments component in Oracle E-Business Suite 12.0.4, 12.0.6 Unspecified vulnerability in the Oracle Payments component in Oracle E-Business Suite 12.0.4, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality via unknown vectors related to Separate Remittance Advice.
nvd
CVE-2014-4285MEDIUMCVSS 4.3v11.5.10.22014-10-15
CVE-2014-4285 [MEDIUM] CVE-2014-4285: Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to Reports Configuration.
nvd
CVE-2014-6539MEDIUMCVSS 4.3v11.5.10.2v12.0.6+4 more2014-10-15
CVE-2014-6539 [MEDIUM] CVE-2014-6539: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to LOV, a different vulnerability than CVE-2014-6472.
nvd
CVE-2014-6523MEDIUMCVSS 4.0v12.1.3v12.2.2+2 more2014-10-15
CVE-2014-6523 [MEDIUM] CVE-2014-6523: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality via vectors related to REST Interface.
nvd
CVE-2014-6479MEDIUMCVSS 4.0v11.5.10.2v12.0.6+1 more2014-10-15
CVE-2014-6479 [MEDIUM] CVE-2014-6479: Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote authenticated users to affect confidentiality via vectors related to OC4J Configuration.
nvd
CVE-2014-6472MEDIUMCVSS 5.0v11.5.10.2v12.0.6+4 more2014-10-15
CVE-2014-6472 [MEDIUM] CVE-2014-6472: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to LOV, a different vulnerability than CVE-2014-6539.
nvd
CVE-2014-6471MEDIUMCVSS 4.3v11.5.10.2v12.0.6+4 more2014-10-15
CVE-2014-6471 [MEDIUM] CVE-2014-6471: Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12 Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to OAM Diagnostics.
nvd
CVE-2014-4281MEDIUMCVSS 4.3v12.0.6v12.1.3+3 more2014-10-15
CVE-2014-4281 [MEDIUM] CVE-2014-4281: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via unknown vectors related to Portal Integration.
nvd
CVE-2014-6550MEDIUMCVSS 4.3v11.5.10.22014-10-15
CVE-2014-6550 [MEDIUM] CVE-2014-6550: Unspecified vulnerability in the Oracle Applications Object Library component in Oracle E-Business S Unspecified vulnerability in the Oracle Applications Object Library component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to iHelp.
nvd
CVE-2014-2482MEDIUMCVSS 5.5v12.1.3v12.2.2+1 more2014-07-17
CVE-2014-2482 [MEDIUM] CVE-2014-2482: Unspecified vulnerability in the Oracle Concurrent Processing component in Oracle E-Business Suite 1 Unspecified vulnerability in the Oracle Concurrent Processing component in Oracle E-Business Suite 12.1.3, 12.2.2, and 12.2.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
nvd
CVE-2014-4213MEDIUMCVSS 4.3v12.0.6v12.1.3+2 more2014-07-17
CVE-2014-4213 [MEDIUM] CVE-2014-4213: Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12 Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, and 12.2.3 allows remote attackers to affect integrity via unknown vectors.
nvd
CVE-2014-4235LOWCVSS 3.5v11.5.10.2v12.0.6+3 more2014-07-17
CVE-2014-4235 [LOW] CVE-2014-4235: Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0. Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, and 12.2.3 allows remote authenticated users to affect integrity via unknown vectors.
nvd
CVE-2014-4248LOWCVSS 1.0v11.5.10.2v12.0.6+3 more2014-07-17
CVE-2014-4248 [LOW] CVE-2014-4248: Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, and 12.2.3 allows local users to affect confidentiality via unknown vectors related to Logging.
nvd
CVE-2014-0366MEDIUMCVSS 4.0v11.5.10.2v12.0.6+2 more2014-01-15
CVE-2014-0366 [MEDIUM] CVE-2014-0366: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, and 12.2.2 allows remote authenticated users to affect confidentiality via unknown vectors related to Attachments.
nvd
← Previous7 / 17Next →