Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_OBIEE_CPU_APR_2023_OAS.NASL
HistoryApr 25, 2023 - 12:00 a.m.

Oracle Business Intelligence Enterprise Edition (OAS) (Apr 2023 CPU)

2023-04-2500:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12

7.8 High

AI Score

Confidence

High

JSON

The versions of Oracle Business Intelligence Enterprise Edition (OBIEE) (OAS) installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2023 CPU advisory.

  • Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Analytics Server (Apache Commons BeanUtils)). The supported version that is affected is 6.4.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Business Intelligence Enterprise Edition accessible data as well as unauthorized read access to a subset of Oracle Business Intelligence Enterprise Edition accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Business Intelligence Enterprise Edition. (CVE-2019-10086)

  • Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Analytics Server (zlib)). The supported version that is affected is 6.4.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability can result in takeover of Oracle Business Intelligence Enterprise Edition. (CVE-2022-37434)

  • Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: BI Application Archive (Apache Commons Text)). The supported version that is affected is 6.4.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability can result in takeover of Oracle Business Intelligence Enterprise Edition. (CVE-2022-42889)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(174743);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/22");

  script_cve_id(
    "CVE-2018-1000656",
    "CVE-2019-10086",
    "CVE-2021-27568",
    "CVE-2021-4048",
    "CVE-2021-40690",
    "CVE-2021-41184",
    "CVE-2022-1587",
    "CVE-2022-31160",
    "CVE-2022-32215",
    "CVE-2022-37434",
    "CVE-2022-42003",
    "CVE-2022-42889",
    "CVE-2023-21910",
    "CVE-2023-21952",
    "CVE-2023-21965"
  );
  script_xref(name:"CEA-ID", value:"CEA-2021-0025");
  script_xref(name:"CEA-ID", value:"CEA-2021-0004");
  script_xref(name:"IAVA", value:"2023-A-0556");
  script_xref(name:"IAVA", value:"2023-A-0558");
  script_xref(name:"IAVA", value:"2023-A-0559");

  script_name(english:"Oracle Business Intelligence Enterprise Edition (OAS) (Apr 2023 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The versions of Oracle Business Intelligence Enterprise Edition (OBIEE) (OAS) installed
on the remote host are affected by multiple vulnerabilities as referenced in the April 2023 CPU advisory.

  - Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics 
    (component: Analytics Server (Apache Commons BeanUtils)). The supported version that is affected is 
    6.4.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP 
    to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability 
    can result in unauthorized update, insert or delete access to some of Oracle Business Intelligence 
    Enterprise Edition accessible data as well as unauthorized read access to a subset of Oracle Business 
    Intelligence Enterprise Edition accessible data and unauthorized ability to cause a partial denial of 
    service (partial DOS) of Oracle Business Intelligence Enterprise Edition. (CVE-2019-10086)

  - Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics 
    (component: Analytics Server (zlib)). The supported version that is affected is 6.4.0.0.0. Easily 
    exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise 
    Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability can result in 
    takeover of Oracle Business Intelligence Enterprise Edition. (CVE-2022-37434)

  - Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics 
    (component: BI Application Archive (Apache Commons Text)). The supported version that is affected is 
    6.4.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP 
    to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability 
    can result in takeover of Oracle Business Intelligence Enterprise Edition. (CVE-2022-42889)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpuapr2023cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpuapr2023.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the April 2023 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-10086");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2022-42889");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Apache Commons Text RCE');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/04/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/04/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/04/25");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:business_intelligence");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_analytics_server_installed.nbin");
  script_require_keys("installed_sw/Oracle Analytics Server");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::get_app_info(app:'Oracle Analytics Server');

var constraints = [
  {'min_version': '6.4.0.0.0', 'fixed_version': '6.4.0.0.230404', 'fixed_display': '6.4.0.0.230404 patch: 35253109'}
];

vcf::check_version_and_report(app_info: app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
oraclebusiness_intelligencecpe:/a:oracle:business_intelligence

References

Related

osv 20
ubuntu 4
openvas 21
nessus 32
redhat 6
prion 8
cve 8
debian 4
ibm 48
suse 2
github 6
redhatcve 4
veracode 6
debiancve 4
gitlab 1
atlassian 4
ubuntucve 4
drupal 1
cgr 2
f5 1
checkpoint_advisories 1
huntr 1
fedora 2
gentoo 2
symantec 1
mageia 1
amazon 1
cnvd 1
rapid7blog 1
redos 1
githubexploit 1
osv
osv
jqueryui vulnerability
2022-09-09 09:31:52
jqueryui - security update
2022-12-07 00:00:00
Flask is vulnerable to Denial of Service via incorrect encoding of JSON data
2018-08-23 19:10:40
ubuntu
ubuntu
jQuery UI vulnerability
2022-09-09 00:00:00
Flask vulnerability
2020-06-01 00:00:00
jQuery UI vulnerabilities
2023-10-05 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5181-1)
2023-01-27 00:00:00
Debian: Security Advisory (DLA-3230-1)
2022-12-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:0657-1)
2021-06-09 00:00:00
nessus
nessus
Ubuntu 18.04 ESM / 20.04 ESM / 22.04 ESM : jQuery UI vulnerability (USN-5181-1)
2023-10-16 00:00:00
RHEL 8 : Satellite 6.12.1 Async Security Update (Critical) (RHSA-2023:0261)
2024-04-28 00:00:00
Debian DLA-3230-1 : jqueryui - LTS security update
2022-12-08 00:00:00
redhat
redhat
(RHSA-2023:0261) Critical: Satellite 6.12.1 Async Security Update
2023-01-18 14:49:14
(RHSA-2020:0870) Low: python-flask security update
2020-03-17 16:54:58
(RHSA-2020:0057) Important: rh-java-common-apache-commons-beanutils security update
2020-01-08 11:00:17
prion
prion
Buffer overflow
2023-04-18 20:15:00
Buffer overflow
2023-04-18 20:15:00
Buffer overflow
2023-04-18 20:15:00
cve
cve
CVE-2023-21952
2023-04-18 20:15:15
CVE-2023-21965
2023-04-18 20:15:16
CVE-2021-27568
2021-02-23 02:15:00
debian
debian
[SECURITY] [DLA 3230-1] jqueryui security update
2022-12-07 10:30:55
[SECURITY] [DLA 1892-1] flask security update
2019-08-20 10:04:13
[SECURITY] [DSA 5010-1] libxml-security-java security update
2021-11-15 17:45:11
ibm
ibm
Security Bulletin: IBM Engineering Workflow Management (EWM) vulnerabilities CVE-2021-41182, CVE-2022-31160, CVE-2021-41184, CVE-2021-41183
2023-03-27 17:00:47
Security Bulletin: Multiple vulnerabilities in jQuery affect IBM Tivoli Netcool Impact
2023-12-01 10:35:31
Security Bulletin: CVE-2021-27568 An issue was discovered in netplex json-smart-v1, an exception is thrown from a function
2021-07-30 05:02:21
suse
suse
Security update for python-Flask (low)
2019-04-02 00:00:00
Security update for apache-commons-beanutils (important)
2019-09-03 00:00:00
github
github
Flask is vulnerable to Denial of Service via incorrect encoding of JSON data
2018-08-23 19:10:40
Improper Check for Unusual or Exceptional Conditions in json-smart
2021-06-16 18:03:47
XSS in the `of` option of the `.position()` util in jquery-ui
2021-10-26 14:55:12
redhatcve
redhatcve
CVE-2021-27568
2021-03-17 10:35:37
CVE-2021-41184
2021-11-01 17:41:18
CVE-2021-40690
2021-10-06 08:58:16
veracode
veracode
Denial Of Service (DoS)
2021-03-17 08:08:00
Denial Of Service (DoS)
2018-08-21 07:03:15
Cross-site Scripting (XSS)
2022-07-19 05:25:38
debiancve
debiancve
CVE-2021-40690
2021-09-19 18:15:00
CVE-2022-31160
2022-07-20 20:15:00
CVE-2019-10086
2019-08-20 21:15:00
gitlab
gitlab
Improper Input Validation
2018-08-20 00:00:00
atlassian
atlassian
Info Disclosure org.apache.santuario:xmlsec Dependency in Crowd Data Center and Server
2023-12-14 07:45:31
Vulnerable version of xmlsec used - CVE-2021-40690
2022-03-15 19:56:03
Vulnerable version of xmlsec used - CVE-2021-40690 in atlassian-authentication-plugin
2022-10-19 10:02:11
ubuntucve
ubuntucve
CVE-2021-41184
2021-10-26 00:00:00
CVE-2021-40690
2021-09-19 00:00:00
CVE-2022-31160
2022-07-20 00:00:00
drupal
drupal
Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2022-001
2022-01-19 00:00:00
cgr
cgr
CVE-2021-40690 vulnerabilities
2024-05-14 09:06:56
CVE-2019-10086 vulnerabilities
2024-05-13 09:06:52
f5
f5
K000134507 : jQuery UI vulnerability CVE-2022-31160
2023-05-08 00:00:00
checkpoint_advisories
checkpoint_advisories
jQuery UI Cross-site Scripting (CVE-2021-41184)
2022-10-19 00:00:00
huntr
huntr
Jquery UI 1.13.1 in use which is vulnerable to CVE-2022-31160
2023-02-20 08:50:55
fedora
fedora
[SECURITY] Fedora 30 Update: apache-commons-beanutils-1.9.4-1.fc30
2019-11-13 09:58:19
[SECURITY] Fedora 31 Update: apache-commons-beanutils-1.9.4-1.fc31
2019-11-13 10:08:09
gentoo
gentoo
Commons-BeanUtils: Improper Access Restriction
2024-05-08 00:00:00
Apache Commons Text: Arbitrary Code Execution
2023-01-11 00:00:00
symantec
symantec
Apache Commons Beanutils CVE-2019-10086 Remote Security Vulnerability
2019-08-15 00:00:00
mageia
mageia
Updated apache-commons-beanutils packages fix security vulnerability
2019-12-19 16:44:26
amazon
amazon
Important: apache-commons-beanutils
2020-02-17 19:50:00
cnvd
cnvd
Apache Commons Text remote code execution vulnerability
2022-10-14 00:00:00
rapid7blog
rapid7blog
Rapid7’s Impact from Apache Commons Text Vulnerability (CVE-2022-42889)
2022-11-04 13:00:00
redos
redos
ROS-20230922-01
2023-09-22 00:00:00
githubexploit
githubexploit
Exploit for Code Injection in Apache Commons Text
2023-06-27 08:29:24

7.8 High

AI Score

Confidence

High

JSON
Related for ORACLE_OBIEE_CPU_APR_2023_OAS.NASL
osv20ubuntu4openvas21nessus32redhat6prion8cve8debian4ibm48suse2github6redhatcve4veracode6debiancve4gitlab1atlassian4ubuntucve4drupal1cgr2f51checkpoint_advisories1huntr1fedora2gentoo2symantec1mageia1amazon1cnvd1rapid7blog1redos1githubexploit1