cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-21862,https://securityvulnerability.io/vulnerability/CVE-2023-21862,Vulnerability in Oracle Web Services Manager of Oracle Fusion Middleware,"A vulnerability exists in the Oracle Web Services Manager component of Oracle Fusion Middleware, specifically in its XML Security component. This issue allows an unauthenticated attacker with network access over HTTP to potentially compromise the service. An attacker must persuade a user to interact with a malicious link to exploit this flaw, leading to unauthorized creation, deletion, or modification of critical data within Oracle Web Services Manager. Consequently, this could result in unauthorized access to sensitive information, affecting the confidentiality and integrity of the data managed by the service.",Oracle,Web Services Manager,8.1,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2023-01-18T00:15:00.000Z,0
CVE-2022-21497,https://securityvulnerability.io/vulnerability/CVE-2022-21497,Unauthenticated Access Vulnerability in Oracle Web Services Manager by Oracle,"The vulnerability in Oracle Web Services Manager, part of Oracle Fusion Middleware, poses a significant risk by allowing unauthenticated attackers with network access via HTTP to compromise the service. Exploitation requires user interaction from a victim to execute a successful attack. If exploited, this vulnerability may lead to unauthorized creation, deletion, or modification of critical data, compromising the confidentiality and integrity of the underlying data accessible through the Oracle Web Services Manager.",Oracle,Web Services Manager,8.1,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-04-19T20:38:51.000Z,0