CWE-284
5,077 CVEs • Abstraction: Pillar
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVEs (5,077)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Oracle 1Peoplesoft Enterprise Human Capital Management Candidate Gateway May 6, 2026 Oct 25, 2016 N/A· v4 4.8 MEDIUM· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote administrators to affect confidentiality and integrity via vectors related to Candidate Gateway. |
1Oracle 1Platform Security For Java May 6, 2026 Oct 25, 2016 N/A· v4 7.6 HIGH· v3 6.5 MEDIUM· v2 Unspecified vulnerability in the Oracle Platform Security for Java component in Oracle Fusion Middleware 12.1.3.0.0, 12.2.1.0.0, and 12.2.1.1.0 allows remote authenticated users to affect confidentiality, integrity, and...Show more |
1Oracle 1Flexcube Universal Banking May 6, 2026 Oct 25, 2016 N/A· v4 6.1 MEDIUM· v3 7.8 HIGH· v2 Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote attackers to affect confident...Show more |
1Oracle 1Flexcube Universal Banking May 6, 2026 Oct 25, 2016 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 and 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect con...Show more |
1Oracle 1Flexcube Universal Banking May 6, 2026 Oct 25, 2016 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect...Show more |
1Oracle 1Flexcube Universal Banking May 6, 2026 Oct 25, 2016 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect...Show more |
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Lynx. |
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect availability via vectors related to Core, a different vulnerabili...Show more |
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect confidentiality, integrity, and availability via vectors related...Show more |
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect availability via vectors related to Core, a different vulnerabili...Show more |
1Oracle 1Flexcube Universal Banking May 6, 2026 Oct 25, 2016 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect...Show more |
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect integrity and availability via vectors related to Kernel Zones. |
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.1.4 in Oracle Virtualization allows remote attackers to affect confidentiality and integrity via vectors related to VRDE. |
1Oracle 1Enterprise Manager Base Platform May 6, 2026 Oct 25, 2016 N/A· v4 6.3 MEDIUM· v3 3.3 LOW· v2 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 12.1.0.5 allows local users to affect confidentiality and integrity via vectors related to Security Fr...Show more |
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 12.1.3.0, 12.2.1.0, and 12.2.1.1 allows local users to affect confidentiality and integrity via vectors related to CIE Related...Show more |
1Oracle 1Peoplesoft Enterprise Supply Chain Management Services Procurement May 6, 2026 Oct 25, 2016 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 Unspecified vulnerability in the PeopleSoft Enterprise SCM Services Procurement component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via unknown ve...Show more |
1Oracle 1Advanced Supply Chain Planning May 6, 2026 Oct 25, 2016 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 Unspecified vulnerability in the Oracle Advanced Supply Chain Planning component in Oracle Supply Chain Products Suite 12.2.3 through 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors rel...Show more |
1Oracle 1Mysql Connector/python May 6, 2026 Oct 25, 2016 N/A· v4 5.6 MEDIUM· v3 6.8 MEDIUM· v2 Unspecified vulnerability in the MySQL Connector component 2.1.3 and earlier and 2.0.4 and earlier in Oracle MySQL allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Con...Show more |
1Oracle 1Customer Interaction History May 6, 2026 Oct 25, 2016 N/A· v4 8.2 HIGH· v3 6.4 MEDIUM· v2 Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1 through 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unkn...Show more |
1Oracle 1Flexcube Universal Banking May 6, 2026 Oct 25, 2016 N/A· v4 5.0 MEDIUM· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, and 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality...Show more |