CVE-2019-2575 in AutoVue 3D Professional Advancedinfo

Summary

Vulnerability in the Oracle AutoVue 3D Professional Advanced component of Oracle Supply Chain Products Suite (subcomponent: Format Handling - 2D). Supported versions that are affected are 21.0.0 and 21.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle AutoVue 3D Professional Advanced. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle AutoVue 3D Professional Advanced accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

12/14/2018

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

5.3

EPSS

0.00994

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-2575
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-2575
CVE Details	https://www.cvedetails.com/cve/CVE-2019-2575/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!