cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-21403,https://securityvulnerability.io/vulnerability/CVE-2022-21403,Vulnerability in Mediation Engine of Oracle Communications Operations Monitor,"A vulnerability exists in the Mediation Engine component of Oracle Communications Operations Monitor, allowing an attacker with high-level privileges and network access via HTTP to exploit the system. This could lead to unauthorized updates, deletions, or insertions of crucial data, as well as unauthorized read access to sensitive subsets of information. The vulnerability also allows an attacker to initiate a partial denial of service, affecting the availability of Oracle Communications Operations Monitor.",Oracle,Communications Operations Monitor,6.6,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:27:00.000Z,0
CVE-2022-21402,https://securityvulnerability.io/vulnerability/CVE-2022-21402,Unauthorized Access Vulnerability in Oracle Communications Operations Monitor,"The vulnerability in Oracle Communications Operations Monitor affects several versions of the product, allowing high privileged attackers with network access via HTTP to potentially compromise sensitive data. Exploitation requires human interaction from an innocent party, which poses a significant risk as successful attacks can lead to unauthorized updates, inserts, or deletions, as well as unauthorized read access to critical operational data. Therefore, while the vulnerability primarily resides in the Mediation Engine component, its impact can extend to other associated products.",Oracle,Communications Operations Monitor,4.8,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:58.000Z,0
CVE-2022-21401,https://securityvulnerability.io/vulnerability/CVE-2022-21401,Unauthorized Access Vulnerability in Oracle Communications Operations Monitor,"A vulnerability in Oracle Communications Operations Monitor exposes the product to potential unauthorized access, allowing an attacker with high privileges and network access to manipulate sensitive data. This includes the ability to unauthorized update, insert, or delete data, along with unauthorized reading of accessible data. Additionally, the vulnerability can lead to a partial denial of service, impacting the availability of the affected operations monitor. It highlights the importance of securing network connections and maintaining updated software versions to mitigate potential exploitation.",Oracle,Communications Operations Monitor,6.6,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:56.000Z,0
CVE-2022-21400,https://securityvulnerability.io/vulnerability/CVE-2022-21400,Vulnerability in Oracle Communications Operations Monitor Mediation Engine,"A vulnerability exists in the Mediation Engine component of Oracle Communications Operations Monitor, allowing an attacker with low privileges and network access via HTTP to exploit sensitive data. Successful exploitation requires user interaction, leading to potential unauthorized updates, inserts, or deletions of accessible data within the platform. This vulnerability poses a risk to the confidentiality and integrity of the data managed by the Oracle Communications Operations Monitor.",Oracle,Communications Operations Monitor,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:55.000Z,0
CVE-2022-21399,https://securityvulnerability.io/vulnerability/CVE-2022-21399,Oracle Communications Operations Monitor Vulnerability in Mediation Engine,"A vulnerability exists in the Oracle Communications Operations Monitor within the Mediation Engine component that allows a highly privileged attacker with network access via HTTP to exploit the system. This vulnerability can lead to unauthorized updates, inserts, or deletions of data stored in the Oracle Communications Operations Monitor, as well as unauthorized read access to sensitive data. In addition, this vulnerability can enable attackers to cause partial denial of service, affecting the overall performance and availability of the system. Successful exploitation of this weakness may significantly impact not only the Oracle Communications Operations Monitor but also adjacent systems relying on its functionalities.",Oracle,Communications Operations Monitor,6.6,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:53.000Z,0
CVE-2022-21398,https://securityvulnerability.io/vulnerability/CVE-2022-21398,Vulnerability in Mediation Engine of Oracle Communications Operations Monitor,"An improper authentication vulnerability exists in the Mediation Engine component of Oracle Communications Operations Monitor. This flaw allows a low-privileged attacker with network access via HTTP to compromise the system. While exploiting this vulnerability requires human interaction from someone other than the attacker, successful exploitation could result in unauthorized access to modify, delete, or read some of the accessible data within the Oracle Communications Operations Monitor. This vulnerability poses a risk as it could significantly impact additional products connected to the monitor.",Oracle,Communications Operations Monitor,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:51.000Z,0
CVE-2022-21397,https://securityvulnerability.io/vulnerability/CVE-2022-21397,Vulnerability in Oracle Communications Operations Monitor Allows Unauthorized Access,"A vulnerability exists in the Oracle Communications Operations Monitor product, specifically within the Mediation Engine component, which can be exploited by low-privileged attackers with network access through HTTP. This exploitation requires human interaction from another party, raising significant security concerns. Successful attacks may lead to unauthorized modifications to data, including updates, inserts, or deletions, and allow unauthorized read access to certain datasets within the Oracle Communications Operations Monitor. This vulnerability not only affects the monitor itself but can also have ripple effects on interconnected systems.",Oracle,Communications Operations Monitor,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:49.000Z,0
CVE-2022-21396,https://securityvulnerability.io/vulnerability/CVE-2022-21396,Vulnerability in Oracle Communications Operations Monitor by Oracle,"A vulnerability exists in Oracle Communications Operations Monitor that allows a low-privileged attacker with network access via HTTP to manipulate the application. This issue arises from the requirement for human interaction, enabling attackers to potentially gain unauthorized update, insert, or delete access to sensitive data. Furthermore, the impact of this vulnerability may extend to other connected products. The affected versions include 3.4, 4.2, 4.3, 4.4, and 5.0, necessitating urgent attention from users to safeguard their systems.",Oracle,Communications Operations Monitor,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:48.000Z,0
CVE-2022-21395,https://securityvulnerability.io/vulnerability/CVE-2022-21395,Vulnerability in Oracle Communications Operations Monitor Mediation Engine,"A vulnerability exists in the Oracle Communications Operations Monitor's Mediation Engine that could be exploited by a high privileged attacker with network access via HTTP. This weakness allows unauthorized access to compromise the entire system, risking the integrity, confidentiality, and availability of sensitive data. If successfully executed, an attacker could take control of the Mediation Engine, posing serious threats to organizational security and operational continuity.",Oracle,Communications Operations Monitor,7.2,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:26:45.000Z,0
CVE-2022-21246,https://securityvulnerability.io/vulnerability/CVE-2022-21246,Exploitable Vulnerability in Oracle Communications Operations Monitor Product,"A security vulnerability exists in Oracle Communications Operations Monitor, specifically within the Mediation Engine component. This vulnerability can be exploited by a low-privileged attacker with network access via HTTP, enabling them to compromise sensitive data. Successful exploitation necessitates human interaction from a third party, making it a significant risk. The vulnerability can lead to unauthorized modifications in the database, allowing attackers to insert, update, or delete information. Additionally, unauthorized read access to certain data sets may also occur, further jeopardizing the integrity and confidentiality of the information within Oracle Communications Operations Monitor.",Oracle,Communications Operations Monitor,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-01-19T11:21:57.000Z,0
CVE-2016-3513,https://securityvulnerability.io/vulnerability/CVE-2016-3513,,Unspecified vulnerability in the Oracle Communications Operations Monitor component in Oracle Communications Applications before 3.3.92.0.0 allows remote authenticated users to affect confidentiality via vectors related to Infrastructure.,Oracle,Communications Operations Monitor,6.5,MEDIUM,0.0012400000123307109,false,,false,false,false,,,false,false,,2016-07-21T10:00:00.000Z,0