漏洞标题
N/A
漏洞描述信息
影响Oracle通信应用程序的Oracle通信汇聚组件(子组件:邮件代理(dojo))的漏洞。受影响的版本是3.0和3.0.1。容易利用的漏洞允许通过HTTP进行验证的未授权攻击者入侵Oracle通信汇聚。虽然该漏洞存在于Oracle通信汇聚,但攻击可能会对其他产品产生重大影响。成功利用此漏洞可能会导致对Oracle通信汇聚可访问数据的未经授权更新、插入或删除访问,以及对Oracle通信汇聚可访问数据的未经授权读取访问。CVSS 3.0基础得分7.2( confidentiality和 integrity 影响)。CVSS向量:(CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N)
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Vulnerability in the Oracle Communications Convergence component of Oracle Communications Applications (subcomponent: Mail Proxy (dojo)). Supported versions that are affected are 3.0 and 3.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Communications Convergence. While the vulnerability is in Oracle Communications Convergence, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Communications Convergence accessible data as well as unauthorized read access to a subset of Oracle Communications Convergence accessible data. CVSS 3.0 Base Score 7.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N).
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Oracle Communications Convergence 安全漏洞
漏洞描述信息
Oracle Communications是美国甲骨文(Oracle)公司的一套用于快速交付和货币化数字生活通信的应用程序。Communications Convergence是其中的一个用于有线电视通信组件。 Oracle Communications Applications中的Communications Convergence组件3.0版本和3.0.1版本的Mail Proxy (dojo)子组件存在安全漏洞。远程攻击者可利用该漏洞未授权读取、更新、插入或删除数据,影响数据的保密性和完整性。
CVSS信息
N/A
漏洞类别
授权问题