CVE-2022-21585 in Banking Trade Finance情報

要約

〜によって MITRE • 2022年07月20日

Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications (component: Infrastructure). The supported version that is affected is 14.5. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Trade Finance. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Banking Trade Finance accessible data as well as unauthorized access to critical data or complete access to all Oracle Banking Trade Finance accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Banking Trade Finance. CVSS 3.1 Base Score 6.7 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

責任者

Oracle

予約する

2021年11月15日

モデレーション

承諾済み

エントリ

VDB-204350

EPSS

0.00551

アクティビティ

非常低い

セクター

Finance

ソース

Want to know what is going to be exploited?

We predict KEV entries!