cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2020-14805,https://securityvulnerability.io/vulnerability/CVE-2020-14805,,"Vulnerability in the Oracle E-Business Suite Secure Enterprise Search product of Oracle E-Business Suite (component: Search Integration Engine). Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle E-Business Suite Secure Enterprise Search. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle E-Business Suite Secure Enterprise Search accessible data as well as unauthorized access to critical data or complete access to all Oracle E-Business Suite Secure Enterprise Search accessible data. CVSS 3.1 Base Score 9.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N).",Oracle,E-business Suite Secure Enterprise Search,9.1,CRITICAL,0.0027000000700354576,false,false,false,false,,false,false,2020-10-21T14:04:26.000Z,0
CVE-2016-3549,https://securityvulnerability.io/vulnerability/CVE-2016-3549,,"Unspecified vulnerability in the Oracle E-Business Suite Secure Enterprise Search component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality via vectors related to Search Integration Engine.",Oracle,E-business Suite Secure Enterprise Search,5.3,MEDIUM,0.002469999948516488,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2007-3854,https://securityvulnerability.io/vulnerability/CVE-2007-3854,,"Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.5 allow remote authenticated users to have unknown impact via (1) SYS.DBMS_PRVTAQIS in the Advanced Queuing component (DB02) and (2) MDSYS.MD in the Spatial component (DB12).  NOTE: Oracle has not disputed reliable researcher claims that DB02 is for SQL injection and DB12 is for a buffer overflow.",Oracle,"Database Server,Application Server,Peoplesoft Enterprise Customer Relationship Management,Peoplesoft Enterprise Peopletools,Peoplesoft Enterprise Human Capital Management,Secure Enterprise Search,Apex,E-business Suite,Collaboration Suite",,,0.018309999257326126,false,false,false,false,,false,false,2007-07-18T19:00:00.000Z,0