Oracle Isupport vulnerabilities
23 known vulnerabilities affecting oracle/isupport.
Total CVEs
23
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH18MEDIUM5
Vulnerabilities
Page 1 of 2
CVE-2024-20944MEDIUMCVSS 5.4≥ 12.2.3, ≤ 12.2.132024-01-16
CVE-2024-20944 [MEDIUM] CWE-352 CVE-2024-20944: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Internal Operati
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person other
nvd
CVE-2021-2083HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-01-20
CVE-2021-2083 [HIGH] CVE-2021-2083: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: User Responsibil
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: User Responsibilities). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a per
nvd
CVE-2021-2097HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.102021-01-20
CVE-2021-2097 [HIGH] CVE-2021-2097: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Suppor
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person other than
nvd
CVE-2020-14686HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.92020-07-15
CVE-2020-14686 [HIGH] CVE-2020-14686: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Support
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person other than
nvd
CVE-2020-2855HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.32020-04-15
CVE-2020-2855 [HIGH] CVE-2020-2855: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Admin). Supporte
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Admin). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person other than the attacker and whi
nvd
CVE-2020-2815HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.32020-04-15
CVE-2020-2815 [HIGH] CVE-2020-2815: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Suppor
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person other than the attacker and w
nvd
CVE-2020-2843HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.32020-04-15
CVE-2020-2843 [HIGH] CVE-2020-2843: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Suppor
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person other than the attacker and w
nvd
CVE-2020-2872HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.32020-04-15
CVE-2020-2872 [HIGH] CVE-2020-2872: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Suppor
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Profile). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person other than the attacker and w
nvd
CVE-2020-2878HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.32020-04-15
CVE-2020-2878 [HIGH] CVE-2020-2878: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Mail). Supported
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Mail). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person other than the attacker and whil
nvd
CVE-2020-2789MEDIUMCVSS 4.7≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.82020-04-15
CVE-2020-2789 [MEDIUM] CVE-2020-2789: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: User Interface).
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: User Interface). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a person ot
nvd
CVE-2020-2658HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.92020-01-15
CVE-2020-2658 [HIGH] CVE-2020-2658: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Support
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle iSupport. Successful attacks require human interaction from a person other than
nvd
CVE-2020-2661HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.92020-01-15
CVE-2020-2661 [HIGH] CVE-2020-2661: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Support
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle iSupport. Successful attacks require human interaction from a person other than
nvd
CVE-2020-2662HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.92020-01-15
CVE-2020-2662 [HIGH] CVE-2020-2662: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Support
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle iSupport. Successful attacks require human interaction from a person other than
nvd
CVE-2020-2665HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.92020-01-15
CVE-2020-2665 [HIGH] CVE-2020-2665: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Support
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle iSupport. Successful attacks require human interaction from a person other than
nvd
CVE-2020-2667MEDIUMCVSS 4.7≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.92020-01-15
CVE-2020-2667 [MEDIUM] CVE-2020-2667: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Support
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle iSupport. Successful attacks require human interaction from a person other tha
nvd
CVE-2020-2668MEDIUMCVSS 4.7≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.92020-01-15
CVE-2020-2668 [MEDIUM] CVE-2020-2668: Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Support
Vulnerability in the Oracle iSupport product of Oracle E-Business Suite (component: Others). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle iSupport. Successful attacks require human interaction from a person other tha
nvd
CVE-2019-2829HIGHCVSS 8.2≥ 12.1.1, ≤ 12.1.3≥ 12.2.3, ≤ 12.2.82019-07-23
CVE-2019-2829 [HIGH] CVE-2019-2829: Vulnerability in the Oracle iSupport component of Oracle E-Business Suite (subcomponent: Service Req
Vulnerability in the Oracle iSupport component of Oracle E-Business Suite (subcomponent: Service Requests). Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require human interaction from a
nvd
CVE-2017-10415HIGHCVSS 8.2v12.1.1v12.1.2+6 more2017-10-19
CVE-2017-10415 [HIGH] CVE-2017-10415: Vulnerability in the Oracle iSupport component of Oracle E-Business Suite (subcomponent: Others). Su
Vulnerability in the Oracle iSupport component of Oracle E-Business Suite (subcomponent: Others). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require hum
nvd
CVE-2017-10174HIGHCVSS 8.2v12.1.1v12.1.2+5 more2017-08-08
CVE-2017-10174 [HIGH] CVE-2017-10174: Vulnerability in the Oracle iSupport component of Oracle E-Business Suite (subcomponent: Service Req
Vulnerability in the Oracle iSupport component of Oracle E-Business Suite (subcomponent: Service Request). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks require hu
nvd
CVE-2017-10175MEDIUMCVSS 4.3v12.1.1v12.1.2+5 more2017-08-08
CVE-2017-10175 [MEDIUM] CVE-2017-10175: Vulnerability in the Oracle iSupport component of Oracle E-Business Suite (subcomponent: Profiles).
Vulnerability in the Oracle iSupport component of Oracle E-Business Suite (subcomponent: Profiles). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle iSupport. Successful attacks of this vulnerabi
nvd
1 / 2Next →