CVE-2017-3232 in Automatic Service RequestИнформация

Сводка

по MITRE

Vulnerability in the Automatic Service Request (ASR) component of Oracle Support Tools (subcomponent: ASR Manager). The supported version that is affected is Prior to 5.7. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Automatic Service Request (ASR) executes to compromise Automatic Service Request (ASR). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Automatic Service Request (ASR) accessible data. CVSS 3.0 Base Score 5.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Резервировать

06.12.2016

Раскрытие

24.04.2017

Модерация

принято

Вход

VDB-100241

CPE

готов

CWE

CWE-284 (Подтверждённый)

CVSS

5.5 (NVD)

EPSS

0.00110

KEV

Нет

Деятельности

Очень низкий

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-3232
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-3232
CVE Details	https://www.cvedetails.com/cve/CVE-2017-3232/

◂ Предыдущий Обзор Далее ▸

Might our Artificial Intelligence support you?

Check our Alexa App!