EUVD-2022-26783

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in Oracle Commerce Platform enables unauthorized access to critical data for low privileged attackers

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2022-21559	19 Jul 202222:15	–	attackerkb
BDU FSTEC	The vulnerability of the sub-component of the Dynamo Application Framework within the component of the Oracle Commerce Platform of the e-commerce platform Oracle Commerce allows a perpetrator to disclose protected information.	8 Aug 202200:00	–	bdu_fstec
CNNVD	Oracle Commerce 安全漏洞	19 Jul 202200:00	–	cnnvd
CNVD	Unspecified Vulnerability in Oracle Commerce	20 Jul 202200:00	–	cnvd
CVE	CVE-2022-21559	19 Jul 202221:07	–	cve
Cvelist	CVE-2022-21559	19 Jul 202221:07	–	cvelist
NVD	CVE-2022-21559	19 Jul 202222:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - July 2022	19 Jul 202200:00	–	oracle
OSV	CVE-2022-21559	19 Jul 202222:15	–	osv
Prion	Design/Logic Flaw	19 Jul 202222:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "adeda5dc-06c3-3ea6-aef5-77af1933687e",
        "vendor": {
          "name": "Oracle Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "a48dd649-71c5-3ee1-8840-adc8eec8e1e3",
        "product": {
          "name": "Commerce Platform"
        },
        "product_version": "11.3.1"
      },
      {
        "id": "b772ddee-9847-3d4c-9429-1fd46fac78e1",
        "product": {
          "name": "Commerce Platform"
        },
        "product_version": "11.3.2"
      },
      {
        "id": "f2735790-ec65-3aea-a105-c2041bff69a5",
        "product": {
          "name": "Commerce Platform"
        },
        "product_version": "11.3.0"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpujul2022.html

03 Oct 2025 20:07Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.15.5

EPSS0.00086

SSVC