Vulnerabilities > Oracle > E Business Suite
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-01-21 | CVE-2016-0457 | Remote Security vulnerability in Oracle E-Business Suite 12.1/12.2 Unspecified vulnerability in the Application Mgmt Pack for E-Business Suite component in Oracle E-Business Suite 12.1 and 12.2 allows remote attackers to affect confidentiality via vectors related to REST Framework, a different vulnerability than CVE-2016-0456. | 5.0 |
| 2016-01-21 | CVE-2016-0456 | Remote Security vulnerability in Oracle E-Business Suite 12.1/12.2 Unspecified vulnerability in the Application Mgmt Pack for E-Business Suite component in Oracle E-Business Suite 12.1 and 12.2 allows remote attackers to affect confidentiality via vectors related to REST Framework, a different vulnerability than CVE-2016-0457. | 5.0 |
| 2016-01-21 | CVE-2016-0454 | Local Security vulnerability in Oracle E-Business Suite 12.1/12.2 Unspecified vulnerability in the Oracle Mobile Application Servlet component in Oracle E-Business Suite 12.1 and 12.2 allows local users to affect confidentiality via vectors related to MWA Server Manager. | 2.1 |
| 2016-01-21 | CVE-2015-4926 | Remote Security vulnerability in Oracle E-Business Suite 11.5.10.2/12.1/12.2 Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.1, and 12.2 allows remote attackers to affect integrity via vectors related to UIX. | 2.6 |
| 2015-10-21 | CVE-2015-4898 | Remote Security vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect integrity via vectors related to Diagnostics and DMZ. | 4.0 |
| 2015-10-21 | CVE-2015-4886 | XML External Entity Injection vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Report Manager component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Reports Security. | 6.4 |
| 2015-10-21 | CVE-2015-4884 | Remote Security vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality via unknown vectors related to Single Signon. | 5.0 |
| 2015-10-21 | CVE-2015-4865 | Remote Security vulnerability in Oracle E-Business Suite 12.1.3/12.2.3/12.2.4 Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality via vectors related to Business Objects - BC4J. | 2.1 |
| 2015-10-21 | CVE-2015-4854 | Cross-Site Scripting vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via unknown vectors related to Single Signon. network oracle | 4.3 |
| 2015-10-21 | CVE-2015-4851 | XML External Entity Injection vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle iSupplier Portal component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to XML input. network oracle | 6.8 |