cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-21270,https://securityvulnerability.io/vulnerability/CVE-2024-21270,Oracle Common Applications Calendar Vulnerability,"A vulnerability exists within the Oracle Common Applications Calendar component of the Oracle E-Business Suite, specifically impacting versions 12.2.6 to 12.2.13. This vulnerability allows an attacker with low privileges and network access via HTTP to compromise the Oracle Common Applications Calendar, potentially leading to unauthorized actions such as the creation, deletion, or modification of critical data. Successful exploitation can result in complete access to all data stored in the Oracle Common Applications Calendar, heightening the risk of data breaches and integrity losses. Organizations using supported versions should take immediate measures to mitigate the risk associated with this vulnerability.",Oracle,Oracle Common Applications Calendar,8.1,HIGH,0.0004799999878741801,false,false,false,false,,false,false,2024-10-15T19:52:57.740Z,0
CVE-2021-2114,https://securityvulnerability.io/vulnerability/CVE-2021-2114,,"Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite (component: Applications Calendar). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.1 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,8.2,HIGH,0.0020699999295175076,false,false,false,false,,false,false,2021-01-20T14:50:12.000Z,0
CVE-2021-2115,https://securityvulnerability.io/vulnerability/CVE-2021-2115,,"Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite (component: Tasks). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.1 Base Score 7.6 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,7.6,HIGH,0.0007099999929778278,false,false,false,false,,false,false,2021-01-20T14:50:12.000Z,0
CVE-2021-2034,https://securityvulnerability.io/vulnerability/CVE-2021-2034,,"Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite (component: Tasks). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.1 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,8.2,HIGH,0.0020699999295175076,false,false,false,false,,false,false,2021-01-20T14:50:03.000Z,0
CVE-2020-2820,https://securityvulnerability.io/vulnerability/CVE-2020-2820,,"Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite (component: Notes). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,8.2,HIGH,0.0019199999514967203,false,false,false,false,,false,false,2020-04-15T13:29:47.000Z,0
CVE-2020-2823,https://securityvulnerability.io/vulnerability/CVE-2020-2823,,"Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite (component: Notes). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,8.2,HIGH,0.0019199999514967203,false,false,false,false,,false,false,2020-04-15T13:29:47.000Z,0
CVE-2017-10322,https://securityvulnerability.io/vulnerability/CVE-2017-10322,,"Vulnerability in the Oracle Common Applications Calendar component of Oracle E-Business Suite (subcomponent: Applications Calendar). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.0 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",Oracle,Common Applications Calendar,5.3,MEDIUM,0.001550000044517219,false,false,false,false,,false,false,2017-10-19T17:00:00.000Z,0
CVE-2017-10325,https://securityvulnerability.io/vulnerability/CVE-2017-10325,,"Vulnerability in the Oracle Common Applications Calendar component of Oracle E-Business Suite (subcomponent: Applications Calendar). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,8.2,HIGH,0.0014700000174343586,false,false,false,false,,false,false,2017-10-19T17:00:00.000Z,0
CVE-2017-10326,https://securityvulnerability.io/vulnerability/CVE-2017-10326,,"Vulnerability in the Oracle Common Applications Calendar component of Oracle E-Business Suite (subcomponent: Applications Calendar). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Common Applications Calendar. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Common Applications Calendar, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Common Applications Calendar accessible data as well as unauthorized update, insert or delete access to some of Oracle Common Applications Calendar accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Common Applications Calendar,8.2,HIGH,0.0014700000174343586,false,false,false,false,,false,false,2017-10-19T17:00:00.000Z,0
CVE-2016-3541,https://securityvulnerability.io/vulnerability/CVE-2016-3541,,"Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Notes.",Oracle,Common Applications Calendar,9.1,CRITICAL,0.0025100000202655792,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2016-3543,https://securityvulnerability.io/vulnerability/CVE-2016-3543,,"Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Tasks.",Oracle,Common Applications Calendar,9.1,CRITICAL,0.0025100000202655792,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2016-3436,https://securityvulnerability.io/vulnerability/CVE-2016-3436,,"Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Tasks.",Oracle,Common Applications Calendar,8.2,HIGH,0.0021699999924749136,false,false,false,false,,false,false,2016-04-21T10:00:00.000Z,0