Oracle Corporation Configurator vulnerabilities

CVE-2022-21255 [HIGH] CVE-2022-21255: Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: UI Servlet). Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: UI Servlet). Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Configurator. Successful attacks of this vulnerability can result in unauthorized creatio

CVE-2021-2080 [HIGH] CVE-2021-2080: Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Sup Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Successful attacks require human interaction from a person other than the attacke

CVE-2021-2079 [HIGH] CVE-2021-2079: Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Sup Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Successful attacks require human interaction from a person other than the attacke

CVE-2021-2078 [HIGH] CVE-2021-2078: Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Sup Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Successful attacks require human interaction from a person other than the attacke

CVE-2020-14669 [HIGH] CVE-2020-14669: Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Sup Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Successful attacks require human interaction from a person other than the attac

CVE-2020-2865 [MEDIUM] CVE-2020-2865: Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: Installation). S Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: Installation). Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Successful attacks of this vulnerability can result in unauthorized read acce

CVE-2019-2567 [HIGH] CVE-2019-2567: Vulnerability in the Oracle Configurator component of Oracle Supply Chain Products Suite (subcompone Vulnerability in the Oracle Configurator component of Oracle Supply Chain Products Suite (subcomponent: Active Model Generation). Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Successful attacks of this vulnerability can res