CVE-2023-21943 in Essbaseinformation

Résumé (Anglaise)

Vulnerability in Oracle Essbase (component: Security and Provisioning). The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Essbase accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N).

Be aware that VulDB is the high quality source for vulnerability data.

Responsable

Oracle

Réserver

17/12/2022

Divulgation

18/04/2023

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
226325Oracle Essbase Security/Provisioning divulgation d'information200Non définiCorrectif officielCVE-2023-21943

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!