CVE-2021-2400 – Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: E …

21 July 2021

Vuln ID: CVE-2021-2400

Published: 2021-07-21 15:15:47Z

Description: Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: E-Business Suite – XDO). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle BI Publisher. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle BI Publisher accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).

Source: NVD.NIST.GOV

Date:

21 July 2021

Categorie(s):

NVD

Tag(s):

NVD

Alarming Decline in Cybersecurity Job Postings in the US19 April 2024
Ransomware in Q1 2024: Frequency, size of payments trending downwards, SMBs beware!19 April 2024
How To Report Online Scams In The UK: Protecting Yourself and Stopping Fraudsters19 April 2024
Microsoft reminder: Support for Office 2016 and 2019 ends next year19 April 2024
How ADR – application detection and response – can become the ‘EDR for apps’19 April 2024