Oracle Siebel Core-Server Framework vulnerabilities

10 known vulnerabilities affecting oracle/siebel_core-server_framework.

Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM5LOW5

Vulnerabilities

Page 1 of 1
CVE-2018-2789MEDIUMCVSS 5.0v17.02018-04-19
CVE-2018-2789 [MEDIUM] CVE-2018-2789: Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Se Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Services). The supported version that is affected is 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework. While the vulnerability is in Siebel Core - Server Framework, att
nvd
CVE-2017-10162MEDIUMCVSS 5.4v16.0v17.02017-10-19
CVE-2017-10162 [MEDIUM] CVE-2017-10162: Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Se Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Services). Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework. Successful attacks of this vulnerability can result in
nvd
CVE-2017-10049MEDIUMCVSS 6.1v16.0v17.02017-08-08
CVE-2017-10049 [MEDIUM] CVE-2017-10049: Vulnerability in the Siebel Core CRM component of Oracle Siebel CRM (subcomponent: Search). Supporte Vulnerability in the Siebel Core CRM component of Oracle Siebel CRM (subcomponent: Search). Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel Core CRM. Successful attacks require human interaction from a person other than the attacker and
nvd
CVE-2016-5456MEDIUMCVSS 5.3v8.1.1v8.2.2+3 more2016-07-21
CVE-2016-5456 [MEDIUM] CVE-2016-5456: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1 Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via vectors related to Services.
nvd
CVE-2016-5461MEDIUMCVSS 6.5v8.1.1v8.2.2+3 more2016-07-21
CVE-2016-5461 [MEDIUM] CVE-2016-5461: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1 Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via vectors related to Object Manager.
nvd
CVE-2016-5460LOWCVSS 3.7v8.1.1v8.2.2+3 more2016-07-21
CVE-2016-5460 [LOW] CVE-2016-5460: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1 Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-3450 and CVE-2016-5466.
nvd
CVE-2016-3450LOWCVSS 3.7v8.1.1v8.2.2+3 more2016-07-21
CVE-2016-3450 [LOW] CVE-2016-3450: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1 Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-5460 and CVE-2016-5466.
nvd
CVE-2016-5462LOWCVSS 2.7v8.1.1v8.2.2+3 more2016-07-21
CVE-2016-5462 [LOW] CVE-2016-5462: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1 Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote administrators to affect confidentiality via vectors related to Workspaces.
nvd
CVE-2016-3469LOWCVSS 3.3v8.1.1v8.2.2+3 more2016-07-21
CVE-2016-3469 [LOW] CVE-2016-3469: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1 Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows local users to affect confidentiality via vectors related to Services.
nvd
CVE-2016-5466LOWCVSS 3.7v8.1.1v8.2.2+3 more2016-07-21
CVE-2016-5466 [LOW] CVE-2016-5466: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1 Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-3450 and CVE-2016-5460.
nvd