cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-21856,https://securityvulnerability.io/vulnerability/CVE-2023-21856,Unauthorized Data Access Vulnerability in Oracle E-Business Suite,"A vulnerability in the Oracle iSetup component of Oracle E-Business Suite allows for unauthorized data creation, deletion, or modification. This easily exploitable flaw could enable an unauthenticated attacker with HTTP network access to compromise Oracle iSetup, leading to severe integrity impacts on critical data. Affected versions range from 12.2.3 to 12.2.12, highlighting the need for prompt security measures to safeguard sensitive information.",Oracle,iSetup,7.5,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2023-01-18T00:15:00.000Z,0
CVE-2021-2276,https://securityvulnerability.io/vulnerability/CVE-2021-2276,Vulnerability in Oracle E-Business Suite's General Ledger Update Transform Component,"An improper access control vulnerability exists within the Oracle iSetup component of the Oracle E-Business Suite, specifically affecting the General Ledger Update Transform and Reports functionalities. This vulnerability allows an attacker with low privileges and network access via HTTP to compromise the iSetup module. Successful exploitation could lead to unauthorized creation, deletion, or modification of critical data, ultimately granting access to sensitive information across all data accessible within Oracle iSetup.",Oracle,Isetup,8.1,HIGH,0.0009399999980814755,false,,false,false,false,,,false,false,,2021-04-22T21:53:58.000Z,0