cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-21601,https://securityvulnerability.io/vulnerability/CVE-2022-21601,Unauthorized Access Vulnerability in Oracle Communications Billing and Revenue Management,"A network vulnerability exists in Oracle Communications Billing and Revenue Management, specifically within its Connection Manager component. This flaw allows unauthenticated attackers with network access via TCP to exploit the system, potentially leading to unauthorized read access to sensitive data and a risk of causing a partial denial of service. The vulnerability affects multiple versions of the product and highlights the importance of implementing security measures to safeguard against potential intrusions.",Oracle,Communications Billing And Revenue Management,6.5,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-10-18T00:00:00.000Z,0
CVE-2022-21574,https://securityvulnerability.io/vulnerability/CVE-2022-21574,Unauthenticated Network Access Risk in Oracle Communications Billing and Revenue Management,"A vulnerability exists in Oracle Communications Billing and Revenue Management that could allow an unauthenticated attacker with network access via HTTP to compromise the system. Successful exploitation of this vulnerability may enable the attacker to partially disrupt service, affecting the availability of the Billing and Revenue Management functionality. This highlights the importance of securing network access to prevent unauthorized exploitation.",Oracle,Communications Billing And Revenue Management,5.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-07-19T21:08:28.000Z,0
CVE-2022-21573,https://securityvulnerability.io/vulnerability/CVE-2022-21573,Denial of Service Vulnerability in Oracle Communications Billing and Revenue Management,"A vulnerability exists in the Oracle Communications Billing and Revenue Management system that could allow a low-privileged attacker with network access to exploit it via HTTP. If successfully exploited, this vulnerability can cause the application to hang or crash repeatedly, resulting in a complete denial of service. This poses a significant risk to service availability, requiring immediate attention to mitigate the threat.",Oracle,Communications Billing And Revenue Management,6.5,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-07-19T21:08:26.000Z,0
CVE-2022-21572,https://securityvulnerability.io/vulnerability/CVE-2022-21572,Oracle Communications Billing and Revenue Management Vulnerability in Billing Care,"A vulnerability exists in Oracle Communications Billing and Revenue Management's Billing Care component, affecting versions 12.0.0.4.0 through 12.0.0.6.0. An attacker with minimal privileges and network access via HTTP can exploit this vulnerability, potentially leading to unauthorized modifications or deletions of data. Successful exploitation requires interaction from a user other than the malicious actor, which increases the complexity of attacks. This weakness can also adversely affect other integrated products, highlighting its broader impact beyond the main application.",Oracle,Communications Billing And Revenue Management,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-07-19T21:08:24.000Z,0
CVE-2022-21429,https://securityvulnerability.io/vulnerability/CVE-2022-21429,Unauthenticated Network Vulnerability in Oracle Communications Billing and Revenue Management,"An unauthenticated network vulnerability exists in Oracle Communications Billing and Revenue Management, specifically within the Billing Care component. The flaw allows attackers with network access via HTTP to potentially take control of the system. This vulnerability affects versions 12.0.0.4.0 through 12.0.0.6.0, posing significant risks to the confidentiality, integrity, and availability of sensitive data.",Oracle,Communications Billing And Revenue Management,8.1,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-07-19T21:06:32.000Z,0
CVE-2022-21431,https://securityvulnerability.io/vulnerability/CVE-2022-21431,Unauthorized Access Vulnerability in Oracle Communications Billing and Revenue Management,"A vulnerability exists in Oracle's Billing and Revenue Management system that allows unauthenticated attackers with network access via TCP to compromise the application. This flaw can lead to unauthorized control over the system, potentially affecting the integrity, confidentiality, and availability of the data managed by the application. The vulnerability is present in versions 12.0.0.4 and 12.0.0.5, and attackers exploiting this flaw may also impact other interconnected systems, emphasizing the need for immediate attention and remediation measures.",Oracle,Communications Billing And Revenue Management,10,CRITICAL,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-04-19T20:37:16.000Z,0
CVE-2022-21430,https://securityvulnerability.io/vulnerability/CVE-2022-21430,Vulnerability in Oracle Communications Billing and Revenue Management by Oracle,"An identified vulnerability in Oracle Communications Billing and Revenue Management allows a low-privileged attacker with network access via TCP to potentially compromise the system. While primarily affecting the billing and revenue management component, the implications of this vulnerability could extend its impact to additional interconnected applications. Successful exploitation might enable unauthorized access and control, raising significant security concerns.",Oracle,Communications Billing And Revenue Management,8.5,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-04-19T20:37:14.000Z,0
CVE-2022-21424,https://securityvulnerability.io/vulnerability/CVE-2022-21424,Exploitable Vulnerability in Oracle Communications Billing and Revenue Management,"A vulnerability exists in Oracle Communications Billing and Revenue Management's Connection Manager component, enabling attackers with low privileges and network access to compromise the system. This weakness can lead to unauthorized creation, deletion, or modification of critical data, as well as unauthorized access to sensitive information. It may also allow attackers to cause a partial denial of service, impacting the availability of the application. To mitigate risks, it is crucial for organizations using this version to apply necessary updates and security measures.",Oracle,Communications Billing And Revenue Management,8.3,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-04-19T20:37:08.000Z,0
CVE-2022-21422,https://securityvulnerability.io/vulnerability/CVE-2022-21422,Vulnerability in Oracle Communications Billing and Revenue Management Product,"A network access vulnerability exists in the Oracle Communications Billing and Revenue Management product, specifically in the Connection Manager component. Supported versions 12.0.0.4 and 12.0.0.5 are at risk, potentially allowing low-privileged attackers with TCP network access to exploit this flaw. If successfully exploited, an attacker could take control of the Oracle Communications Billing and Revenue Management system, jeopardizing data confidentiality, integrity, and availability.",Oracle,Communications Billing And Revenue Management,7.5,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-04-19T20:37:05.000Z,0
CVE-2022-21391,https://securityvulnerability.io/vulnerability/CVE-2022-21391,Connection Manager Vulnerability in Oracle Communications Billing and Revenue Management,"A significant security vulnerability exists in the Connection Manager component of the Oracle Communications Billing and Revenue Management product. This issue permits a low-privileged attacker to exploit network access via HTTP, potentially leading to complete control over the system. While primarily affecting the Billing and Revenue Management product, this vulnerability may extend its impact to related Oracle applications, making it imperative for customers to patch affected versions 12.0.0.3 and 12.0.0.4 to maintain system integrity and protect sensitive data.",Oracle,Communications Billing And Revenue Management,9.9,CRITICAL,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:37.000Z,0
CVE-2022-21390,https://securityvulnerability.io/vulnerability/CVE-2022-21390,Unauthenticated Remote Code Execution in Oracle Communications Billing and Revenue Management,"A vulnerability exists in Oracle Communications Billing and Revenue Management's Webservices Manager, allowing an unauthenticated attacker with network access via HTTP to compromise the system. This serious flaw can lead to the takeover of the billing and revenue management platform, and while it primarily affects Oracle Communications Billing and Revenue Management, there are potential implications for other products that interact with it, elevating the risk landscape for affected organizations.",Oracle,Communications Billing And Revenue Management,10,CRITICAL,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:35.000Z,0
CVE-2022-21389,https://securityvulnerability.io/vulnerability/CVE-2022-21389,Unauthenticated Remote Code Execution in Oracle Communications Billing and Revenue Management,"A vulnerability exists in Oracle Communications Billing and Revenue Management, allowing unauthenticated attackers to exploit the system via HTTP. This weakness can lead to unauthorized access and potential takeover of the application, impacting not only the billing and revenue management systems but also interconnected applications. Versions 12.0.0.3 and 12.0.0.4 are susceptible, emphasizing the critical need for timely updates to mitigate risks associated with this security flaw.",Oracle,Communications Billing And Revenue Management,10,CRITICAL,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:33.000Z,0
CVE-2022-21276,https://securityvulnerability.io/vulnerability/CVE-2022-21276,Vulnerability in Oracle Communications Billing and Revenue Management by Oracle,"An exploitable vulnerability in Oracle Communications Billing and Revenue Management’s Connection Manager component allows an attacker with low privileges and network access via HTTP to compromise the system. This could potentially lead to a complete takeover of the affected billing services. Although primarily impacting Oracle Communications Billing and Revenue Management, the ramifications of successfully exploiting this vulnerability could extend to other interconnected products, raising concerns about overall system security and data integrity.",Oracle,Communications Billing And Revenue Management,9.9,CRITICAL,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:22:57.000Z,0
CVE-2022-21275,https://securityvulnerability.io/vulnerability/CVE-2022-21275,Unauthenticated Access Vulnerability in Oracle Communications Billing Product,"A critical vulnerability exists in Oracle Communications Billing and Revenue Management, specifically in the Connection Manager component. This vulnerability allows an unauthenticated attacker with network access via HTTP to exploit the system. Successful exploitation can lead to a complete compromise of the billing system, potentially affecting additional services relying on it, hence posing significant risks to data confidentiality, integrity, and availability.",Oracle,Communications Billing And Revenue Management,10,CRITICAL,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:22:55.000Z,0
CVE-2022-21268,https://securityvulnerability.io/vulnerability/CVE-2022-21268,Unauthorized Data Access Vulnerability in Oracle Communications Billing and Revenue Management,"The Oracle Communications Billing and Revenue Management product includes a vulnerability in the Pipeline Manager component that allows a low privileged attacker with logon access to exploit the system. This exploitation can lead to unauthorized read access to sensitive data within the billing management system. The issue affects versions 12.0.0.3 and 12.0.0.4, highlighting the need for organizations using these versions to implement necessary security measures to protect their data.",Oracle,Communications Billing And Revenue Management,3.3,LOW,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:22:41.000Z,0
CVE-2022-21267,https://securityvulnerability.io/vulnerability/CVE-2022-21267,Unauthorized Access Vulnerability in Oracle Communications Billing and Revenue Management,"A vulnerability exists within the Oracle Communications Billing and Revenue Management product, specifically in the Pipeline Manager component. This weakness can be exploited by an attacker with low privileges who has logged onto the infrastructure where the application runs. By leveraging this vulnerability, attackers may gain unauthorized access to certain data within the application, potentially compromising sensitive information. The affected versions are 12.0.0.3 and 12.0.0.4. Organizations using these versions should consider implementing necessary security measures to mitigate exposure to this vulnerability.",Oracle,Communications Billing And Revenue Management,3.3,LOW,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:22:39.000Z,0
CVE-2022-21266,https://securityvulnerability.io/vulnerability/CVE-2022-21266,Unauthorized Access Vulnerability in Oracle Communications Billing and Revenue Management,"A vulnerability exists within Oracle Communications Billing and Revenue Management that allows unauthenticated network access via HTTP. Attackers can exploit this weakness to gain unauthorized access to critical data, potentially compromising the entire system's data integrity. Supported versions affected include 12.0.0.3 and 12.0.0.4, making timely updates essential to secure sensitive information.",Oracle,Communications Billing And Revenue Management,7.5,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:22:37.000Z,0