Lucene search
OracleCVELIST:CVE-2018-3184HistoryOct 17, 2018 - 1:00 a.m.
CVE-2018-3184
2018-10-1701:00:00
oracle
www.cve.org
5
Vulnerability in the Hyperion BI+ component of Oracle Hyperion (subcomponent: IQR - Foundation Services). The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion BI+. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Hyperion BI+ accessible data. CVSS 3.0 Base Score 2.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N).
CNA Affected
[
{
"product": "Hyperion BI+",
"vendor": "Oracle Corporation",
"versions": [
{
"status": "affected",
"version": "11.1.2.4"
}
]
}
]Related
cve
cve
CVE-2018-3184
2018-10-17 01:31:20
nvd
nvd
CVE-2018-3184
2018-10-17 01:31:20
packetstorm
packetstorm
Oracle Hyperion Planning 11.1.2.4 Cross Site Scripting
2018-10-26 00:00:00
prion
prion
Design/Logic Flaw
2018-10-17 01:31:00
zdt
zdt
Oracle Hyperion Planning 11.1.2.4 Cross Site Scripting Vulnerability
2018-10-26 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00