cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-2368,https://securityvulnerability.io/vulnerability/CVE-2021-2368,,Vulnerability in the Siebel CRM product of Oracle Siebel CRM (component: Siebel Core - Server Infrastructure). Supported versions that are affected are 21.5 and Prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Siebel CRM. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Siebel CRM accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).,Oracle,Siebel Core - Server Framework,5.9,MEDIUM,0.0019600000232458115,false,false,false,false,,false,false,2021-07-20T22:43:45.000Z,0
CVE-2021-2353,https://securityvulnerability.io/vulnerability/CVE-2021-2353,,Vulnerability in the Siebel Core - Server Framework product of Oracle Siebel CRM (component: Loging). Supported versions that are affected are 21.5 and Prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Siebel Core - Server Framework executes to compromise Siebel Core - Server Framework. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Siebel Core - Server Framework accessible data. CVSS 3.1 Base Score 4.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).,Oracle,Siebel Core - Server Framework,4.4,MEDIUM,0.00044999999227002263,false,false,false,false,,false,false,2021-07-20T22:43:31.000Z,0
CVE-2021-2039,https://securityvulnerability.io/vulnerability/CVE-2021-2039,,"Vulnerability in the Siebel Core - Server Framework product of Oracle Siebel CRM (component: Search). Supported versions that are affected are 20.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Siebel Core - Server Framework, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Siebel Core - Server Framework accessible data as well as unauthorized update, insert or delete access to some of Siebel Core - Server Framework accessible data. CVSS 3.1 Base Score 7.6 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N).",Oracle,Siebel Core - Server Framework,7.6,HIGH,0.0007099999929778278,false,false,false,false,,false,false,2021-01-20T14:50:04.000Z,0
CVE-2021-2004,https://securityvulnerability.io/vulnerability/CVE-2021-2004,,Vulnerability in the Siebel Core - Server BizLogic Script product of Oracle Siebel CRM (component: Integration - Scripting). Supported versions that are affected are 20.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server BizLogic Script. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Siebel Core - Server BizLogic Script accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).,Oracle,Siebel Core - Server Framework,4.3,MEDIUM,0.0004799999878741801,false,false,false,false,,false,false,2021-01-20T14:50:00.000Z,0
CVE-2019-2777,https://securityvulnerability.io/vulnerability/CVE-2019-2777,,"Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Search). Supported versions that are affected are 19.0 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel Core - Server Framework. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Siebel Core - Server Framework, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Siebel Core - Server Framework accessible data as well as unauthorized read access to a subset of Siebel Core - Server Framework accessible data. CVSS 3.0 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).",Oracle,Siebel Core - Server Framework,6.1,MEDIUM,0.0008299999753944576,false,false,false,false,,false,false,2019-07-23T23:15:00.000Z,0
CVE-2019-2570,https://securityvulnerability.io/vulnerability/CVE-2019-2570,,"Vulnerability in the Siebel Core - Server BizLogic Script component of Oracle Siebel CRM (subcomponent: Integration - Scripting). The supported version that is affected is 19.3. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Siebel Core - Server BizLogic Script. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Siebel Core - Server BizLogic Script accessible data as well as unauthorized read access to a subset of Siebel Core - Server BizLogic Script accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Siebel Core - Server BizLogic Script. CVSS 3.0 Base Score 4.7 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L).",Oracle,Siebel Core - Server Framework,4.7,MEDIUM,0.0006799999973736703,false,false,false,false,,false,false,2019-04-23T18:16:39.000Z,0
CVE-2018-2789,https://securityvulnerability.io/vulnerability/CVE-2018-2789,,"Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Services). The supported version that is affected is 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework. While the vulnerability is in Siebel Core - Server Framework, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Siebel Core - Server Framework accessible data. CVSS 3.0 Base Score 5.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N).",Oracle,Siebel Core - Server Framework,5,MEDIUM,0.0004900000058114529,false,false,false,false,,false,false,2018-04-19T02:00:00.000Z,0
CVE-2017-10162,https://securityvulnerability.io/vulnerability/CVE-2017-10162,,"Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Services). Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Siebel Core - Server Framework accessible data as well as unauthorized read access to a subset of Siebel Core - Server Framework accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N).",Oracle,Siebel Core - Server Framework,5.4,MEDIUM,0.0005499999970197678,false,false,false,false,,false,false,2017-10-19T17:00:00.000Z,0
CVE-2017-10049,https://securityvulnerability.io/vulnerability/CVE-2017-10049,,"Vulnerability in the Siebel Core CRM component of Oracle Siebel CRM (subcomponent: Search). Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel Core CRM. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Siebel Core CRM, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Siebel Core CRM accessible data as well as unauthorized read access to a subset of Siebel Core CRM accessible data. CVSS 3.0 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).",Oracle,Siebel Core - Server Framework,6.1,MEDIUM,0.001290000043809414,false,false,false,false,,false,false,2017-08-08T15:00:00.000Z,0
CVE-2016-5456,https://securityvulnerability.io/vulnerability/CVE-2016-5456,,"Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via vectors related to Services.",Oracle,Siebel Core-server Framework,5.3,MEDIUM,0.001290000043809414,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2016-5460,https://securityvulnerability.io/vulnerability/CVE-2016-5460,,"Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-3450 and CVE-2016-5466.",Oracle,Siebel Core-server Framework,3.7,LOW,0.002469999948516488,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2016-5461,https://securityvulnerability.io/vulnerability/CVE-2016-5461,,"Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via vectors related to Object Manager.",Oracle,Siebel Core-server Framework,6.5,MEDIUM,0.001290000043809414,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2016-3450,https://securityvulnerability.io/vulnerability/CVE-2016-3450,,"Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-5460 and CVE-2016-5466.",Oracle,Siebel Core-server Framework,3.7,LOW,0.002469999948516488,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2016-3469,https://securityvulnerability.io/vulnerability/CVE-2016-3469,,"Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows local users to affect confidentiality via vectors related to Services.",Oracle,Siebel Core-server Framework,3.3,LOW,0.0006000000284984708,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2016-5466,https://securityvulnerability.io/vulnerability/CVE-2016-5466,,"Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-3450 and CVE-2016-5460.",Oracle,Siebel Core-server Framework,3.7,LOW,0.002469999948516488,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0
CVE-2016-5462,https://securityvulnerability.io/vulnerability/CVE-2016-5462,,"Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote administrators to affect confidentiality via vectors related to Workspaces.",Oracle,Siebel Core-server Framework,2.7,LOW,0.0015899999998509884,false,false,false,false,,false,false,2016-07-21T10:00:00.000Z,0