漏洞标题
N/A
漏洞描述信息
Oracle Hyperion Financial Reporting产品的Oracle Hyperion漏洞(组件:存储库)。受影响的支持版本是11.2.13.0.000。容易利用的漏洞允许通过HTTP网络访问的低特权攻击者 compromising Oracle Hyperion Financial Reporting。尽管漏洞存在于Oracle Hyperion Financial Reporting,但攻击可能显著影响其他产品(范围变化)。成功利用此漏洞可能导致未经授权访问关键数据或完全访问所有Oracle Hyperion Financial Reporting可访问数据,并未经授权造成Oracle Hyperion Financial Reporting部分拒绝服务(部分DOS)。CVSS 3.1基础得分为8.5(安全性和可用性影响)。CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L)
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
漏洞类别
特权管理不恰当
漏洞标题
N/A
漏洞描述信息
Vulnerability in the Oracle Hyperion Financial Reporting product of Oracle Hyperion (component: Repository). The supported version that is affected is 11.2.13.0.000. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Hyperion Financial Reporting. While the vulnerability is in Oracle Hyperion Financial Reporting, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hyperion Financial Reporting accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Hyperion Financial Reporting. CVSS 3.1 Base Score 8.5 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L).
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
漏洞类别
N/A
漏洞标题
Oracle Hyperion 安全漏洞
漏洞描述信息
Oracle Hyperion是美国甲骨文(Oracle)公司的一套财务建模应用软件。该软件提供财务结算、报表制作等功能。 Oracle Hyperion 的 Oracle Hyperion Financial Reporting product 存在安全漏洞,该漏洞源于 Repository 模块允许通过 HTTP 进行网络访问的低权限攻击者破坏 Oracle Hyperion Financial Reporting。虽然该漏洞存在于 Oracle Hyperion Financial Reportin
CVSS信息
N/A
漏洞类别
其他