cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-21825,https://securityvulnerability.io/vulnerability/CVE-2023-21825,Unauthorized Data Access Vulnerability in Oracle E-Business Suite iSupplier Portal,"An exploitable vulnerability exists in the Oracle iSupplier Portal, part of the Oracle E-Business Suite's Supplier Management component. This flaw allows unauthenticated attackers with network access via HTTP to potentially access restricted data. The affected versions (12.2.6 to 12.2.8) may expose sensitive information, leading to unauthorized read access to data within the portal. Organizations should assess their exposure to this vulnerability promptly and implement necessary security measures.",Oracle,iSupplier Portal,5.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2023-01-18T00:15:00.000Z,0
CVE-2021-2364,https://securityvulnerability.io/vulnerability/CVE-2021-2364,Security Flaw in Oracle iSupplier Portal Affects Oracle E-Business Suite,"A vulnerability in the Oracle iSupplier Portal component of Oracle E-Business Suite allows low privileged attackers with network access via HTTP to exploit the system. Attackers can gain unauthorized access, leading to the potential creation, deletion, or modification of critical data within the portal. This vulnerability undermines the integrity and confidentiality of the data accessible via the Oracle iSupplier Portal, making it imperative for users to assess their security posture and apply relevant patches as indicated by Oracle.",Oracle,Isupplier Portal,8.1,HIGH,0.0009399999980814755,false,,false,false,false,,,false,false,,2021-07-20T22:43:41.000Z,0
CVE-2020-2864,https://securityvulnerability.io/vulnerability/CVE-2020-2864,Unauthenticated SQL Injection in Oracle iSupplier Portal by Oracle,"A vulnerability exists in the Oracle iSupplier Portal within the Oracle E-Business Suite, allowing unauthenticated attackers with network access through HTTP to exploit the system. This vulnerability can lead to unauthorized read access to specific data within the portal, posing a significant risk to sensitive information and overall security. Affected versions include Oracle iSupplier Portal 12.1.3 and 12.2.5 to 12.2.9. Organizations using these versions are advised to implement necessary patches and security measures.",Oracle,Isupplier Portal,5.3,MEDIUM,0.0008900000248104334,false,,false,false,false,,,false,false,,2020-04-15T13:29:49.000Z,0
CVE-2019-2583,https://securityvulnerability.io/vulnerability/CVE-2019-2583,Vulnerability in Oracle iSupplier Portal of Oracle E-Business Suite,"A vulnerability exists in the Attachments component of the Oracle iSupplier Portal within the Oracle E-Business Suite, affecting several versions. This easily exploitable vulnerability allows an unauthenticated attacker with network access via HTTP to breach the Oracle iSupplier Portal. Attackers may require user interaction, yet if successful, they can obtain unauthorized access to sensitive data or gain complete access to everything available through the Oracle iSupplier Portal. This vulnerability poses serious risks, enabling unauthorized updates, inserts, or deletions of accessible data.",Oracle,Isupplier Portal,8.2,HIGH,0.002369999885559082,false,,false,false,false,,,false,false,,2019-04-23T18:16:39.000Z,0