Every CVE whose affected-product data names Oracle Configurator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2020-14669 — CVSS 8.2 (high): Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Supported versions that are affected are…
CVE-2021-2078 — CVSS 8.2 (high): Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Supported versions that are affected are…
CVE-2021-2080 — CVSS 8.2 (high): Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Supported versions that are affected are…
CVE-2021-2079 — CVSS 8.2 (high): Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: UI Servlet). Supported versions that are affected are…
CVE-2016-3438 — CVSS 8.2 (high): Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 12.0.6, 12.1, and 12.2 allows remote…
CVE-2022-21255 — CVSS 8.1 (high): Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: UI Servlet). Supported versions that are affected…
CVE-2002-1639 — CVSS 7.5 (high): Oracle Configurator before 11.5.7.17.32 and 11.5.6.16.53 allows remote attackers to obtain sensitive information via a request to the…
CVE-2019-2567 — CVSS 7.5 (high): Vulnerability in the Oracle Configurator component of Oracle Supply Chain Products Suite (subcomponent: Active Model Generation). Supported…
CVE-2025-30728 — CVSS 7.5 (high): Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: Core). Supported versions that are affected are…
CVE-2002-1640 — CVSS 6.8 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Oracle Configurator before 11.5.7.17.32 and 11.5.6.16.53 allows remote attackers to…
CVE-2026-34274 — CVSS 6.1 (medium): Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: User Interface). Supported versions that are…
CVE-2025-30720 — CVSS 6.1 (medium): Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: Orders). Supported versions that are affected are…
CVE-2026-21972 — CVSS 5.3 (medium): Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: User Interface). Supported versions that are…
CVE-2020-2865 — CVSS 5.3 (medium): Vulnerability in the Oracle Configurator product of Oracle Supply Chain (component: Installation). Supported versions that are affected are…
CVE-2016-0541 — CVSS 5.0 (medium): Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 11.5.10.2, 12.1, and 12.2 allows…
CVE-2016-0540 — CVSS 5.0 (medium): Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 11.5.10.2, 12.1, and 12.2 allows…