cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-21270,https://securityvulnerability.io/vulnerability/CVE-2024-21270,Oracle Common Applications Calendar Vulnerability,"A vulnerability exists within the Oracle Common Applications Calendar component of the Oracle E-Business Suite, specifically impacting versions 12.2.6 to 12.2.13. This vulnerability allows an attacker with low privileges and network access via HTTP to compromise the Oracle Common Applications Calendar, potentially leading to unauthorized actions such as the creation, deletion, or modification of critical data. Successful exploitation can result in complete access to all data stored in the Oracle Common Applications Calendar, heightening the risk of data breaches and integrity losses. Organizations using supported versions should take immediate measures to mitigate the risk associated with this vulnerability.",Oracle,Oracle Common Applications Calendar,8.1,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2024-10-15T19:52:57.740Z,0
CVE-2021-2115,https://securityvulnerability.io/vulnerability/CVE-2021-2115,Vulnerability in Oracle Common Applications Calendar for Oracle E-Business Suite,"The Oracle Common Applications Calendar within the Oracle E-Business Suite is susceptible to exploitation that enables an attacker with limited privileges to gain unauthorized access through network channels such as HTTP. This vulnerability requires the active participation of a third party, which enhances the risk of data breaches. Impacted systems may suffer from unauthorized access not only to the calendar data but also could lead to manipulations such as data insertion, updates, or deletions, undermining the integrity and confidentiality of sensitive information.",Oracle,Common Applications Calendar,7.6,HIGH,0.0007099999929778278,false,,false,false,false,,,false,false,,2021-01-20T14:50:12.000Z,0
CVE-2021-2114,https://securityvulnerability.io/vulnerability/CVE-2021-2114,Vulnerability in Oracle Common Applications Calendar of Oracle E-Business Suite,"A vulnerability exists within the Oracle Common Applications Calendar component of Oracle E-Business Suite, affecting several versions. This weakness allows unauthenticated attackers with network access to gain unauthorized access, contingent on human interaction from another user. The exploitation of this vulnerability can lead to unauthorized modification, insertion, or deletion of accessible data in the calendar, raising significant security concerns for sensitive information managed by the affected applications.",Oracle,Common Applications Calendar,8.2,HIGH,0.0020699999295175076,false,,false,false,false,,,false,false,,2021-01-20T14:50:12.000Z,0
CVE-2021-2034,https://securityvulnerability.io/vulnerability/CVE-2021-2034,Unauthenticated Vulnerability in Oracle E-Business Suite Common Applications Calendar,"The Oracle Common Applications Calendar component of Oracle E-Business Suite is affected by an unauthenticated access vulnerability. An attacker with network access via HTTP could exploit this weakness, granting unauthorized access to sensitive data and potentially allowing unauthorized modifications. While the vulnerability primarily affects the Oracle Common Applications Calendar, it may also impact other associated components. Successful exploitation requires human interaction from a user other than the attacker, underscoring the need for vigilance and improved security measures to protect sensitive information.",Oracle,Common Applications Calendar,8.2,HIGH,0.0020699999295175076,false,,false,false,false,,,false,false,,2021-01-20T14:50:03.000Z,0
CVE-2020-2820,https://securityvulnerability.io/vulnerability/CVE-2020-2820,Vulnerability in Oracle Common Applications Calendar of Oracle E-Business Suite,"An exploitable vulnerability exists in Oracle's Common Applications Calendar within the Oracle E-Business Suite, affecting multiple versions. This flaw allows unauthenticated attackers with network access via HTTP to compromise the application. While the primary vulnerability lies in the Calendar, successful exploitation can lead to unauthorized access to sensitive data and potential modifications, highlighting a significant risk for affected organizations. These attacks necessitate some level of human interaction, posing unique challenges for security teams.",Oracle,Common Applications Calendar,8.2,HIGH,0.0019199999514967203,false,,false,false,false,,,false,false,,2020-04-15T13:29:47.000Z,0
CVE-2020-2823,https://securityvulnerability.io/vulnerability/CVE-2020-2823,Unauthenticated Access Vulnerability in Oracle Common Applications Calendar,"An unauthenticated access vulnerability exists in the Oracle Common Applications Calendar component of Oracle E-Business Suite, affecting supported versions 12.1.1 to 12.1.3. This vulnerability can be exploited by attackers who can reach the application over HTTP, requiring human interaction from a third-party user during the attack. The implications of successful exploitation include unauthorized access to sensitive data and the ability for the attacker to perform update, insert, or delete operations on the accessible data within the Oracle Common Applications Calendar, potentially impacting other integrated systems.",Oracle,Common Applications Calendar,8.2,HIGH,0.0019199999514967203,false,,false,false,false,,,false,false,,2020-04-15T13:29:47.000Z,0
CVE-2017-10326,https://securityvulnerability.io/vulnerability/CVE-2017-10326,,"Vulnerability in the Oracle Common Applications Calendar component of Oracle E-Business Suite (subcomponent: Applications Calendar). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,8.2,HIGH,0.0014700000174343586,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10322,https://securityvulnerability.io/vulnerability/CVE-2017-10322,,"Vulnerability in the Oracle Common Applications Calendar component of Oracle E-Business Suite (subcomponent: Applications Calendar). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.0 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",Oracle,Common Applications Calendar,5.3,MEDIUM,0.001550000044517219,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10325,https://securityvulnerability.io/vulnerability/CVE-2017-10325,,"Vulnerability in the Oracle Common Applications Calendar component of Oracle E-Business Suite (subcomponent: Applications Calendar). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,8.2,HIGH,0.0014700000174343586,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2016-3541,https://securityvulnerability.io/vulnerability/CVE-2016-3541,,"Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Notes.",Oracle,Common Applications Calendar,9.1,CRITICAL,0.0025100000202655792,false,,false,false,false,,,false,false,,2016-07-21T10:00:00.000Z,0
CVE-2016-3543,https://securityvulnerability.io/vulnerability/CVE-2016-3543,,"Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Tasks.",Oracle,Common Applications Calendar,9.1,CRITICAL,0.0025100000202655792,false,,false,false,false,,,false,false,,2016-07-21T10:00:00.000Z,0
CVE-2016-3436,https://securityvulnerability.io/vulnerability/CVE-2016-3436,,"Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Tasks.",Oracle,Common Applications Calendar,8.2,HIGH,0.0021699999924749136,false,,false,false,false,,,false,false,,2016-04-21T10:00:00.000Z,0