CVE-2023-22012 in Business Intelligence Enterprise Editioninformación

Resumen

por MITRE • 2023-07-19

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Analytics Server). The supported version that is affected is 7.0.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Business Intelligence Enterprise Edition accessible data. CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsable

Oracle

Reservar

2022-12-17

Divulgación

2023-07-19

Moderación

aceptado

Artículo

VDB-234873

CPE

listo

EPSS

0.00353

KEV

no

Actividades

muy bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!