Is CVE-2006-0277 being actively exploited?

It is not currently in CISA's KEV catalog. Its EPSS exploitation probability is 4%.

What products does CVE-2006-0277 affect?

Tracked products affected include E-Business Suite. Check the version you run to see whether it is affected.

How do I fix CVE-2006-0277?

Apply the vendor fix promptly. Upgrade affected products to a fixed version.

CVE-2006-0277

Q: What is CVE-2006-0277?

CVE-2006-0277 is a high-severity software vulnerability with a CVSS score of 10. Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) APPS01 in the (a) Application Install component; (2) APPS07 in the (b) Or

HIGH severity · CVSS 10

10CVSS HIGH

Summary

Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) APPS01 in the (a) Application Install component; (2) APPS07 in the (b) Oracle Applications Framework component; (3) APPS08, (4) APPS09, (5) APPS10, and (6) APPS11 in the (c) Oracle Applications Technology Stack component; (7) APPS12 in the (d) Oracle Human Resources component; (8) APPS15 and (9) APPS16 in the (e) Oracle Marketing component; (10) APPS17 in the (f) Marketing Encyclopedia System component; (11) APPS18 in the (g) Oracle Trade Management component; and (12) APPS19 in the (h) Oracle Web Applications Desktop Integration component.

Impact & exploitability

Attack vectorNetwork

Attack complexityLow

Privileges required—

User interaction—

Confidentiality impact—

Integrity impact—

Availability impact—

Exploit probability (EPSS)4%

AV:N/AC:L/Au:N/C:C/I:C/A:C

Affected products we track (1)

E-Business Suite

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

CVE-2006-0277

Summary

Impact & exploitability

Affected products we track (1)

Recommendation

Additional information