漏洞标题
N/A
漏洞描述信息
Oracle支持工具中的OSS支持工具产品(组件:Oracle Explorer)中的漏洞。受影响的支持版本是18.3。容易利用的漏洞允许具有高特权的攻击者登录到执行OSS支持工具的基础设施,以入侵OSS支持工具。成功的攻击需要攻击者之外的人进行人类交互,虽然漏洞在OSS支持工具中,但攻击可能会对其他产品产生重大影响(范围更改)。利用此漏洞的成功攻击可能导致未经授权访问关键数据或完全访问所有可用的OSS支持工具数据。CVSS 3.1基础得分为5.5(保密影响)。CVSS向量:(CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N)
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Vulnerability in the OSS Support Tools product of Oracle Support Tools (component: Oracle Explorer). The supported version that is affected is 18.3. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where OSS Support Tools executes to compromise OSS Support Tools. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in OSS Support Tools, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all OSS Support Tools accessible data. CVSS 3.1 Base Score 5.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N).
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
Oracle Support Tools 输入验证错误漏洞
漏洞描述信息
Oracle Support Tools是美国甲骨文(Oracle)公司的一套Oracle支持工具。 Oracle Support Tools(组件:Oracle Explorer)的 OSS Support Tools 产品中存在安全漏洞,该漏洞允许高权限攻击者登录到执行 OSS 支持工具的基础设施来破坏 OSS 支持工具。
CVSS信息
N/A
漏洞类别
输入验证错误