cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-21206,https://securityvulnerability.io/vulnerability/CVE-2024-21206,Vulnerability in Oracle E-Business Suite's Diagnostic Framework,"A vulnerability exists in the Diagnostics component of the Oracle Enterprise Command Center Framework within the Oracle E-Business Suite. This flaw allows an attacker with low privileges to exploit the system via HTTP, which can lead to unauthorized read access to certain accessible data. The affected versions include ECC:11 through ECC:13. Organizations utilizing this software should be aware of the potential risks and take appropriate measures to safeguard their data against this exploit.",Oracle,Oracle Enterprise Command Center Framework,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2024-10-15T19:52:40.270Z,0
CVE-2023-22106,https://securityvulnerability.io/vulnerability/CVE-2023-22106,Oracle E-Business Suite API Vulnerability in Enterprise Command Center Framework,"This vulnerability exists in Oracle's Enterprise Command Center Framework within the Oracle E-Business Suite. It can be exploited by a low-privileged attacker with network access through HTTP, leading to unauthorized access to critical information within the Oracle Enterprise Command Center Framework. A successful exploitation can compromise sensitive data, posing significant risks as attackers can gain complete access to all data accessible through this framework.",Oracle,Enterprise Command Center Framework,6.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-10-17T22:15:00.000Z,0
CVE-2023-22107,https://securityvulnerability.io/vulnerability/CVE-2023-22107,Vulnerability in Oracle E-Business Suite's Enterprise Command Center Framework,"An unauthenticated access vulnerability exists in the Oracle Enterprise Command Center Framework found in Oracle E-Business Suite. This weakness allows attackers with network access via HTTP to exploit the framework, necessitating a specific human interaction from an individual other than the attacker for successful exploitation. While the vulnerability lies within the Oracle Enterprise Command Center Framework itself, it has the potential to affect other connected products significantly. Successful exploitation could lead to unauthorized data manipulation actions, including updates, inserts, and deletions, as well as unauthorized access to confidential information within the framework.",Oracle,Enterprise Command Center Framework,6.1,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2023-10-17T22:15:00.000Z,0