Lucene search
OracleCVELIST:CVE-2018-3142HistoryOct 17, 2018 - 1:00 a.m.
CVE-2018-3142
2018-10-1701:00:00
oracle
www.cve.org
Vulnerability in the Hyperion Essbase Administration Services component of Oracle Hyperion (subcomponent: EAS Console). The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hyperion Essbase Administration Services. While the vulnerability is in Hyperion Essbase Administration Services, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Hyperion Essbase Administration Services accessible data. CVSS 3.0 Base Score 7.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N).
CNA Affected
[
{
"product": "Hyperion Essbase Administration Services",
"vendor": "Oracle Corporation",
"versions": [
{
"status": "affected",
"version": "11.1.2.4"
}
]
}
]Related
cve
cve
CVE-2018-3142
2018-10-17 01:31:16
nvd
nvd
CVE-2018-3142
2018-10-17 01:31:16
prion
prion
Design/Logic Flaw
2018-10-17 01:31:00
oracle
oracle
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00