CVE-2020-14604

Published: Jul 15, 2020Modified: Nov 21, 2024

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 8.0.6-8.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Financial Services Analytical Applications Infrastructure. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Financial Services Analytical Applications Infrastructure accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).

Affected (1)

Products: Oracle: Financial Services Analytical Applications Infrastructure

Oracle

1 product

Financial Services Analytical Applications Infrastructure

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Oracle Financial Services Analytical Applications Infrastructure	From 8.0.6 to 8.1.0

References (2)

https://www.oracle.com/security-alerts/cpujul2020.html

Source: secalert_us@oracle.com

PatchVendor Advisory

https://www.oracle.com/security-alerts/cpujul2020.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.