Vulnerabilities > Oracle > E Business Suite > 12.1.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-10-21 | CVE-2015-4851 | XML External Entity Injection vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle iSupplier Portal component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to XML input. network oracle | 6.8 |
| 2015-10-21 | CVE-2015-4849 | XML External Entity Injection vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Payments component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Punch-in. network oracle | 6.8 |
| 2015-10-21 | CVE-2015-4846 | SQL Injection vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality and integrity via vectors related to SQL Extensions. | 3.6 |
| 2015-10-21 | CVE-2015-4845 | User Enumeration vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality via vectors related to Java APIs - AOL/J. network oracle | 4.3 |
| 2015-07-16 | CVE-2015-4765 | Remote Security vulnerability in Oracle E-Business Suite 12.1.3/12.2.3/12.2.4 Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect integrity via vectors related to OAM Dashboard. network oracle | 3.5 |
| 2015-07-16 | CVE-2015-4728 | Remote Security vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Sourcing component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality via unknown vectors related to Bid/Quote creation. | 4.0 |
| 2015-07-16 | CVE-2015-2652 | Remote Security vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via unknown vectors related to Web Management. | 5.0 |
| 2015-07-16 | CVE-2015-2645 | Remote Security vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect integrity via unknown vectors. network oracle | 3.5 |
| 2015-07-16 | CVE-2015-2630 | Remote Security vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Technology stack component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Applet startup. network oracle | 4.3 |
| 2015-07-16 | CVE-2015-2618 | Remote Security vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect integrity via unknown vectors related to Input validation. | 2.1 |