Oracle Istore vulnerabilities
42 known vulnerabilities affecting oracle/istore.
Total CVEs
42
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH32MEDIUM10
Vulnerabilities
Page 1 of 3
CVE-2025-53041MEDIUMCVSS 6.1≥ 12.2.5, ≤ 12.2.142025-10-21
CVE-2025-53041 [MEDIUM] CWE-284 CVE-2025-53041: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). S
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.2.5-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other than the
nvd
CVE-2025-30746MEDIUMCVSS 6.1≥ 12.2.3, ≤ 12.2.142025-07-15
CVE-2025-30746 [MEDIUM] CWE-79 CVE-2025-30746: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). S
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other than the
nvd
CVE-2025-30707HIGHCVSS 7.5≥ 12.2.3, ≤ 12.2.142025-04-15
CVE-2025-30707 [HIGH] CWE-284 CVE-2025-30707: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: User Management).
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: User Management). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks of this vulnerability can result in unauthorized access
nvd
CVE-2019-2483HIGHCVSS 8.2v12.1.1v12.1.2+7 more2024-12-24
CVE-2019-2483 [HIGH] CVE-2019-2483: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). S
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require
nvd
CVE-2024-21143MEDIUMCVSS 5.3≥ 12.2.3, ≤ 12.2.132024-07-16
CVE-2024-21143 [MEDIUM] CWE-125 CVE-2024-21143: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: User Management).
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: User Management). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks of this vulnerability can result in unauthorized read
nvd
CVE-2024-20938MEDIUMCVSS 6.1≥ 12.2.3, ≤ 12.2.132024-01-16
CVE-2024-20938 [MEDIUM] CWE-284 CVE-2024-20938: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: ECC). Supported v
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: ECC). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other than the attacker
nvd
CVE-2022-21354MEDIUMCVSS 6.1≥ 12.2.3, ≤ 12.2.112022-01-19
CVE-2022-21354 [MEDIUM] CVE-2022-21354: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: User Interface). S
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: User Interface). Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other than the attack
nvd
CVE-2021-2241HIGHCVSS 8.1≥ 12.1.1, ≤ 12.1.32021-04-22
CVE-2021-2241 [HIGH] CVE-2021-2241: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle iStore. Successful attacks of this vulnerability can result in unauthorized creation, deletion
nvd
CVE-2021-2183HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2183 [HIGH] CVE-2021-2183: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2188HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2188 [HIGH] CVE-2021-2188: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2182HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2182 [HIGH] CVE-2021-2182: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2185HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2185 [HIGH] CVE-2021-2185: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2150HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2150 [HIGH] CVE-2021-2150: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2184HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2184 [HIGH] CVE-2021-2184: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2187HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2187 [HIGH] CVE-2021-2187: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2197HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2197 [HIGH] CVE-2021-2197: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2199HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2199 [HIGH] CVE-2021-2199: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2186HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-04-22
CVE-2021-2186 [HIGH] CVE-2021-2186: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2077HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-01-20
CVE-2021-2077 [HIGH] CVE-2021-2077: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
CVE-2021-2082HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-01-20
CVE-2021-2082 [HIGH] CVE-2021-2082: Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Su
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore. Successful attacks require human interaction from a person other th
nvd
1 / 3Next →