cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-22083,https://securityvulnerability.io/vulnerability/CVE-2023-22083,Vulnerability in Oracle Enterprise Session Border Controller Web UI,"A vulnerability has been identified in the Oracle Enterprise Session Border Controller's Web UI, present in versions 9.0 to 9.2. An unauthenticated attacker with network access via HTTPS can exploit this flaw. For a successful attack, human interaction is required from a user other than the attacker. This can lead to unauthorized read access to certain data within the Oracle Enterprise Session Border Controller. Organizations using the affected versions should implement necessary security measures to mitigate potential risks.",Oracle,"Enterprise Communications Broker,Enterprise Session Border Controller",4.3,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2023-10-17T22:15:00.000Z,0
CVE-2020-14721,https://securityvulnerability.io/vulnerability/CVE-2020-14721,WebGUI Vulnerability in Oracle Enterprise Communications Broker,"The WebGUI of Oracle Enterprise Communications Broker has a vulnerability that enables a low privileged attacker with network access via HTTP to exploit the system. This exploitation can lead to unauthorized updates, adds, or deletions of accessible data. Moreover, attackers can read a subset of this data without permission, and can also induce a partial denial of service, impacting the availability of the product. Affected versions include 3.0.0 through 3.2.0, necessitating immediate remediation to secure sensitive information.",Oracle,Enterprise Communications Broker,6.3,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2020-07-15T17:34:35.000Z,0
CVE-2020-14722,https://securityvulnerability.io/vulnerability/CVE-2020-14722,Vulnerability in Oracle Enterprise Communications Broker WebGUI,"A vulnerability exists in the Oracle Enterprise Communications Broker's WebGUI that permits an unauthenticated attacker with network access via HTTP to exploit the system. While the attack requires human interaction from a third party, it has the potential to compromise sensitive data by allowing unauthorized updates, inserts, or deletions. Additionally, this vulnerability could enable unauthorized read access to certain data and may lead to a partial denial of service. It's crucial for organizations utilizing affected versions (3.0.0 to 3.2.0) to implement security measures to mitigate these risks.",Oracle,Enterprise Communications Broker,5.8,MEDIUM,0.0007699999841861427,false,,false,false,false,,,false,false,,2020-07-15T17:34:35.000Z,0
CVE-2020-14563,https://securityvulnerability.io/vulnerability/CVE-2020-14563,Unauthenticated Access Vulnerability in Oracle Enterprise Communications Broker,"The Oracle Enterprise Communications Broker is impacted by a vulnerability that enables unauthenticated network access via HTTP. This flaw allows potential attackers to selectively read, modify, or delete data stored within the system. Successful exploitation requires human interaction, enabling the attacker to gain unauthorized access, leading to potential data breaches and significant operational disruptions. This vulnerability poses severe risks not just to the Oracle Enterprise Communications Broker but can also affect other interlinked products.",Oracle,Enterprise Communications Broker,6.1,MEDIUM,0.0008299999753944576,false,,false,false,false,,,false,false,,2020-07-15T17:34:27.000Z,0
CVE-2016-3515,https://securityvulnerability.io/vulnerability/CVE-2016-3515,,Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote attackers to affect confidentiality via unknown vectors.,Oracle,Enterprise Communications Broker,7.5,HIGH,0.002850000048056245,false,,false,false,false,,,false,false,,2016-07-21T10:00:00.000Z,0
CVE-2016-3516,https://securityvulnerability.io/vulnerability/CVE-2016-3516,,"Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect confidentiality via vectors related to GUI, a different vulnerability than CVE-2016-3514.",Oracle,Enterprise Communications Broker,3.1,LOW,0.001560000004246831,false,,false,false,false,,,false,false,,2016-07-21T10:00:00.000Z,0
CVE-2016-3514,https://securityvulnerability.io/vulnerability/CVE-2016-3514,,"Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect confidentiality via vectors related to GUI, a different vulnerability than CVE-2016-3516.",Oracle,Enterprise Communications Broker,6.5,MEDIUM,0.0012400000123307109,false,,false,false,false,,,false,false,,2016-07-21T10:00:00.000Z,0
CVE-2014-9708,https://securityvulnerability.io/vulnerability/CVE-2014-9708,,"Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by ""Range: x=,"".",Oracle,Enterprise Communications Broker,,,0.016599999740719795,false,,false,false,false,,,false,false,,2015-03-31T00:00:00.000Z,0