CVE-2022-21532 in JD Edwards EnterpriseOne Orchestrator정보

요약

\~에 의해 MITRE • 2022. 07. 20.

Vulnerability in the JD Edwards EnterpriseOne Orchestrator product of Oracle JD Edwards (component: E1 IOT Orchestrator). Supported versions that are affected are 9.2.6.3 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne Orchestrator. Successful attacks of this vulnerability can result in unauthorized read access to a subset of JD Edwards EnterpriseOne Orchestrator accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

책임이 있는

Oracle

예약하다

2021. 11. 15.

모더레이션

수락

항목

VDB-204436

EPSS

0.00542

출처

Might our Artificial Intelligence support you?

Check our Alexa App!