CVE-2023-22012 in Business Intelligence Enterprise EditionИнформация

Сводка

по MITRE • 19.07.2023

Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Analytics Server). The supported version that is affected is 7.0.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Business Intelligence Enterprise Edition accessible data. CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Ответственный

Oracle

Резервировать

17.12.2022

Раскрытие

19.07.2023

Модерация

принято

Вход

VDB-234873

EPSS

0.00353

KEV

Нет

Деятельности

Очень низкий

Сектор

Energy, Pharma, ...

Источники

Do you want to use VulDB in your project?

Use the official API to access entries easily!