Oracle E-Business Suite 12

CPE Details

Oracle E-Business Suite 12
oracle
e-business_suite
12
2007-08-23
19h05 +00:00
2008-04-01
14h40 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:oracle:e-business_suite:12:*:*:*:*:*:*:*

Informations

Vendor

oracle

Product

e-business_suite

Version

12

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2007-5766 2007-11-08 19h00 +00:00 SQL injection vulnerability in okxLOV.jsp in Oracle E-Business Suite 11 and 12 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NOTE: this is probably the same issue as CVE-2007-5527 or CVE-2007-5528, but there are insufficient details to be sure.
7.5
CVE-2007-2135 2007-04-24 18h00 +00:00 The ADI_BINARY component in the Oracle E-Business Suite allows remote attackers to download arbitrary documents from the APPS.FND_DOCUMENTS table via the ADI_DISPLAY_REPORT function, when passed a certain parameter. NOTE: due to lack of details from Oracle, it is not clear whether this issue is related to other CVE identifiers such as CVE-2007-2126, CVE-2007-2127, or CVE-2007-2128.
7.8
CVE-2007-2170 2007-04-24 18h00 +00:00 The APPLSYS.FND_DM_NODES package in Oracle E-Business Suite does not check for valid sessions, which allows remote attackers to delete arbitrary nodes. NOTE: due to lack of details from Oracle, it is not clear whether this issue is related to other CVE identifiers such as CVE-2007-2126, CVE-2007-2127, or CVE-2007-2128.
9.4
CVE-2007-2130 2007-04-18 16h00 +00:00 Unspecified vulnerability in Workflow Cartridge, as used in Oracle Database Server 9.2.0.1, 10.1.0.2, and 10.2.0.1; Application Server 9.0.4.3 and 10.1.2.0.2; Collaboration Suite 10.1.2; and E-Business Suite; has unknown impact and remote authenticated attack vectors, aka OWF01.
9