EUVD-2022-26747

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in Oracle BI Publisher allows low privileged attackers to gain unauthorized read access.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2022-21523	19 Jul 202222:15	–	attackerkb
CNNVD	Oracle Fusion Middleware和Oracle BI Publisher 输入验证错误漏洞	19 Jul 202200:00	–	cnnvd
CVE	CVE-2022-21523	19 Jul 202221:07	–	cve
Cvelist	CVE-2022-21523	19 Jul 202221:07	–	cvelist
NCSC	Vulnerabilities fixed in Oracle Fusion Middleware	20 Jul 202200:00	–	ncsc
NVD	CVE-2022-21523	19 Jul 202222:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - July 2022	19 Jul 202200:00	–	oracle
Tenable Nessus	Oracle Business Intelligence Publisher (Jul 2022 CPU)	23 Aug 202200:00	–	nessus
Prion	Design/Logic Flaw	19 Jul 202222:15	–	prion
RedhatCVE	CVE-2022-21523	22 May 202523:42	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "097ccd4a-8c1b-3b28-9feb-4fb7998df341",
        "vendor": {
          "name": "Oracle Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1fad9132-2c6e-3c69-9477-b6b16a9ba49e",
        "product": {
          "name": "BI Publisher (formerly XML Publisher)"
        },
        "product_version": "12.2.1.4.0"
      },
      {
        "id": "78879194-d9e5-3c42-a9ec-c0e53b36472d",
        "product": {
          "name": "BI Publisher (formerly XML Publisher)"
        },
        "product_version": "12.2.1.3.0"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpujul2022.html

03 Oct 2025 20:07Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.14.3

EPSS0.00209

SSVC