|
306411
|
8.1 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite (component: Tasks). Supported versions that are affected are 12.2.6-12.2.13. Easily exploitable vulnerabil…
|
NVD-CWE-noinfo
|
CVE-2024-21270
|
2024-10-22 00:57 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306412
|
8.1 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component: Compensation Plan). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vuln…
|
NVD-CWE-noinfo
|
CVE-2024-21269
|
2024-10-22 00:56 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306413
|
8.1 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: Diagnostics). Supported versions that are affected are 12.2.11-12.2.13. Easily exploitable vulnerabili…
|
NVD-CWE-noinfo
|
CVE-2024-21268
|
2024-10-22 00:56 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306414
|
8.0 |
HIGH
Network
|
microfocus
|
application_automation_tools
|
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and …
|
CWE-611
XXE
|
CVE-2024-4690
|
2024-10-22 00:51 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306415
|
8.1 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning). Supported versions that are affected are 12.2.12-12.2.13. Easily exploitable vulnerability …
|
NVD-CWE-noinfo
|
CVE-2024-21267
|
2024-10-22 00:50 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306416
|
8.1 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price List). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability all…
|
NVD-CWE-noinfo
|
CVE-2024-21266
|
2024-10-22 00:49 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306417
|
8.1 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site Hierarchy Flows). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability a…
|
NVD-CWE-noinfo
|
CVE-2024-21265
|
2024-10-22 00:49 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306418
|
8.0 |
HIGH
Network
|
microfocus
|
application_automation_tools
|
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and …
|
CWE-611
XXE
|
CVE-2024-4184
|
2024-10-21 23:09 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306419
|
8.0 |
HIGH
Network
|
microfocus
|
application_automation_tools
|
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and …
|
CWE-611
XXE
|
CVE-2024-4189
|
2024-10-21 23:08 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306420
|
5.5 |
MEDIUM
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A privileged user could exploit this vulnerability to expose sens…
|
CWE-611
XXE
|
CVE-2024-45072
|
2024-10-21 22:41 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
