The vulnerability of the UI and visualization components of the Hyperion Infrastructure Technology management system allows attackers to gain unauthorized access to protected information or to modify, add, or delete data.

🗓️ 10 Nov 2020 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Hyperion management UI and visualization flaw enables unauthorized access via web protocol.

Reporter	Title	Published	Views	Family All 11
CNVD	Unspecified Vulnerability in Oracle Hyperion Infrastructure Technology UI and Visualization Components	28 Oct 202000:00	–	cnvd
CVE	CVE-2020-14854	21 Oct 202014:04	–	cve
Cvelist	CVE-2020-14854	21 Oct 202014:04	–	cvelist
EUVD	EUVD-2020-6990	7 Oct 202500:30	–	euvd
NCSC	Vulnerabilities fixed in Oracle Hyperion	23 Oct 202000:00	–	ncsc
NVD	CVE-2020-14854	21 Oct 202015:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - October 2020	20 Oct 202000:00	–	oracle
OSV	CVE-2020-14854	21 Oct 202015:15	–	osv
Prion	Design/Logic Flaw	21 Oct 202015:15	–	prion
RedhatCVE	CVE-2020-14854	22 May 202517:44	–	redhatcve

Vulners

Node

cisco_systems hyperion_infrastructure_technologyMatch11.1.2.4

Source	Link
oracle	www.oracle.com/security-alerts/cpuoct2020.html
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2020103015
web	www.web.nvd.nist.gov/view/vuln/detail

10 Nov 2020 00:00Current

6.8Medium risk

Vulners AI Score6.8

CVSS 36.1

CVSS 29.4

EPSS0.00689

Hyperion management input validation unauthorized access data modification web protocol