Oracle » E-business Suite » 11.5.10 : Security Vulnerabilities, CVEs, Published In 2007
Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.5 allow remote authenticated users to have unknown impact via (1) SYS.DBMS_PRVTAQIS in the Advanced Queuing component (DB02) and (2) MDSYS.MD in the Spatial component (DB12). NOTE: Oracle has not disputed reliable researcher claims that DB02 is for SQL injection and DB12 is for a buffer overflow.
Max CVSS
5.5
EPSS Score
0.53%
Published
2007-07-18
Updated
2017-07-29
Unspecified vulnerability in the Sales Online component for Oracle E-Business Suite 11.5.10 has unknown impact and remote authenticated attack vectors, aka APPS08.
Max CVSS
9.0
EPSS Score
1.14%
Published
2007-04-18
Updated
2018-10-16
2 vulnerabilities found