Vulnerabilities > Oracle > E Business Suite > High

DATE CVE VULNERABILITY TITLE RISK
2023-01-18 CVE-2023-21849 Unspecified vulnerability in Oracle E-Business Suite
Vulnerability in the Oracle Applications DBA product of Oracle E-Business Suite (component: Java utils).
network
low complexity
oracle
7.5
2022-05-20 CVE-2022-21500 Unspecified vulnerability in Oracle E-Business Suite and User Management
Vulnerability in Oracle E-Business Suite (component: Manage Proxies).
network
low complexity
oracle
7.5
2014-10-15 CVE-2014-4278 Remote Security vulnerability in Oracle E-Business Suite
Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Forms.
network
low complexity
oracle
7.5
2010-07-13 CVE-2010-0908 Remote Oracle Applications Framework vulnerability in Oracle E-Business Suite 12.1.2
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
network
low complexity
oracle
7.5
2009-04-15 CVE-2009-1000 Credentials Management vulnerability in Oracle E-Business Suite 11I10Cu2/12.0.6
The Oracle Applications Framework component in Oracle E-Business Suite 12.0.6 and 11i10CU2 uses default passwords for unspecified "FND Applications Users (not DB users)," which has unknown impact and attack vectors.
network
low complexity
oracle CWE-255
7.5
2007-11-08 CVE-2007-5766 SQL Injection vulnerability in Oracle E-Business Suite 11I/12
SQL injection vulnerability in okxLOV.jsp in Oracle E-Business Suite 11 and 12 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
network
low complexity
oracle CWE-89
7.5
2007-10-17 CVE-2007-5529 Unspecified vulnerability in Oracle E-Business Suite 11.5.10.2
Unspecified vulnerability in the Oracle Self-Service Web Applications component in client-only installations of Oracle E-Business Suite 11.5.10.2 has unknown impact and remote attack vectors, aka APP08.
network
low complexity
oracle
7.5
2007-10-17 CVE-2007-5527 Unspecified vulnerability in Oracle E-Business Suite 11.5.10.2
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10.2 have unknown impact and remote attack vectors, related to (1) Application Object Library component (APP01), (2) Contracts Integration (APP02), (3) Applications Manager (APP04), (4) Marketing component (APP05), and (5) Exchange component (APP07).
network
low complexity
oracle
7.5
2007-07-18 CVE-2007-3867 Unspecified vulnerability in Oracle E-Business Suite 11.5.10.2
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and attack vectors, related to (1) APPS04, (2) APPS05, and (3) APPS06 in (a) Oracle Application Object Library, (4) APPS07 in Oracle Customer Intelligence, (5) APPS08 in Oracle Payments, (7) APPS10 in Oracle Human Resources, and (8) APPS11 in iRecruitment.
network
low complexity
oracle
7.5
2007-07-18 CVE-2007-3866 Unspecified vulnerability in Oracle E-Business Suite 11.5.10.2/12.0.1
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 and 12.0.1 allow remote attackers to have an unknown impact via (a) Oracle Configurator (APPS02), (b) Oracle iExpenses (APPS03), (c) Oracle Application Object Library (APPS09), and (1) APPS12, (2) APPS13, and (3) APPS14 in (d) Oracle Payables.
network
low complexity
oracle
7.5