cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-2706,https://securityvulnerability.io/vulnerability/CVE-2019-2706,Unauthorized Access Vulnerability in Oracle Business Process Management Suite by Oracle,"This vulnerability within the Oracle Business Process Management Suite allows an unauthenticated attacker to exploit the BPM Foundation Services via HTTP. By requiring human interaction from another party, the attacker can compromise sensitive data. Successful exploitation may lead to unauthorized access and manipulation, including updates, inserts, or deletions of crucial information within the accessible datasets of the Oracle Business Process Management Suite.",Oracle,Business Process Management Suite,8.2,HIGH,0.0010900000343099236,false,,false,false,false,,,false,false,,2019-04-23T18:16:45.000Z,0
CVE-2019-2572,https://securityvulnerability.io/vulnerability/CVE-2019-2572,Remote Code Execution Vulnerability in Oracle SOA Suite by Oracle,"The vulnerability affects Oracle SOA Suite within Oracle Fusion Middleware, specifically targeting the Fabric Layer component. It allows an unauthenticated attacker with network access to exploit the system via HTTP. Successful exploitation can lead to the unauthorized reading of sensitive data contained within Oracle SOA Suite, thereby compromising its confidentiality. Organizations using affected versions should assess their exposure and implement necessary security measures.",Oracle,Business Process Management Suite,5.3,MEDIUM,0.0008900000248104334,false,,false,false,false,,,false,false,,2019-04-23T18:16:39.000Z,0
CVE-2018-3100,https://securityvulnerability.io/vulnerability/CVE-2018-3100,,"Vulnerability in the Oracle Business Process Management Suite component of Oracle Fusion Middleware (subcomponent: Process Analysis & Discovery). Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Business Process Management Suite. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Business Process Management Suite accessible data as well as unauthorized access to critical data or complete access to all Oracle Business Process Management Suite accessible data. CVSS 3.0 Base Score 9.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N).",Oracle,Business Process Management Suite,9.1,CRITICAL,0.0022499999031424522,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0