China National Vulnerability DatabaseCNVD-2021-54686Oracle Identity Manager has an unspecified vulnerability (CNVD-2021-54686)
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N
4.9 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:P/A:N
Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle Corporation, which provides middleware, software collections, and other features. An unspecified vulnerability exists in Oracle Identity Manager in Oracle Fusion Middleware. An attacker could exploit this vulnerability to affect confidentiality and integrity.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ca identity manager 11.1. | eq | 2.3.0 | |
| ca identity manager 11.1. | eq | 2.2.0 | |
| ca identity manager 12.2. | eq | 1.3.0 | |
| ca identity manager 12.2. | eq | 1.4.0 |
Related
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N
4.9 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:P/A:N