Oracle Corporation Knowledge Management vulnerabilities

9 known vulnerabilities affecting oracle_corporation/knowledge_management.

Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH6MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2024-20943MEDIUMCVSS 5.4≥ 12.2.3, ≤ 12.2.132024-02-17
CVE-2024-20943 [MEDIUM] CWE-285 CVE-2024-20943: Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Inte Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interac
cvelistv5nvd
CVE-2024-20940MEDIUMCVSS 6.1≥ 12.2.3, ≤ 12.2.132024-01-16
CVE-2024-20940 [MEDIUM] CWE-352 CVE-2024-20940: Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Crea Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Create, Update, Authoring Flow). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require h
cvelistv5nvd
CVE-2024-20948MEDIUMCVSS 6.1≥ 12.2.3, ≤ 12.2.132024-01-16
CVE-2024-20948 [MEDIUM] CWE-284 CVE-2024-20948: Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setu Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setup, Admin). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interaction f
cvelistv5nvd
CVE-2021-2198HIGHCVSS 8.2v12.1.1-12.1.3v12.2.3-12.2.102021-04-22
CVE-2021-2198 [HIGH] CVE-2021-2198: Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setu Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setup, Admin). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interac
cvelistv5nvd
CVE-2020-2841HIGHCVSS 8.2v12.1.1-12.1.32020-04-15
CVE-2020-2841 [HIGH] CVE-2020-2841: Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setu Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setup, Admin). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Successful attacks require human interaction from a person
cvelistv5nvd
CVE-2019-2660HIGHCVSS 8.2v12.1.1v12.1.2+7 more2019-04-23
CVE-2019-2660 [HIGH] CVE-2019-2660: Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite (subcomponent: Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite (subcomponent: Setup, Admin). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Manage
cvelistv5nvd
CVE-2017-10412HIGHCVSS 8.2v12.1.1v12.1.2+6 more2017-10-19
CVE-2017-10412 [HIGH] CVE-2017-10412: Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite (subcomponent: Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite (subcomponent: User Interface). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management
cvelistv5nvd
CVE-2017-10410HIGHCVSS 8.2v12.1.1v12.1.2+6 more2017-10-19
CVE-2017-10410 [HIGH] CVE-2017-10410: Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite (subcomponent: Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite (subcomponent: Search). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management. Succes
cvelistv5nvd
CVE-2017-10411HIGHCVSS 8.2v12.1.1v12.1.2+6 more2017-10-19
CVE-2017-10411 [HIGH] CVE-2017-10411: Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite (subcomponent: Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite (subcomponent: User Interface). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge Management
cvelistv5nvd